CVE-2016-2206

CWE-2643 documents3 sources
Severity
5.7MEDIUM
EPSS
0.2%
top 64.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Symantec Workspace StreamingSymantec Workspace Virtualization
Timeline
PublishedJul 12
Latest updateMay 17

Description

The management console in Symantec Workspace Streaming (SWS) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Workspace Virtualization (SWV) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 allows remote authenticated users to read arbitrary files by modifying the file-download configuration file.

CVSS vector

CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.1 | Impact: 3.6

Affected Packages2 packages

NVDsymantec/workspace_streaming7.5.0, 7.6.0+1

🔴Vulnerability Details

2
GHSA
GHSA-g7f2-x3ff-qjm4: The management console in Symantec Workspace Streaming (SWS) 72022-05-17
CVEList
CVE-2016-2206: The management console in Symantec Workspace Streaming (SWS) 72016-07-12
CVE-2016-2206 (MEDIUM CVSS 5.7) | The management console in Symantec | cvebase.io