CVE-2019-12758

CWE-4273 documents3 sources

Severity

6.7MEDIUM

EPSS

0.1%

top 76.55%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Endpoint Protection

Timeline

PublishedNov 15

Latest updateMay 24

Description

Symantec Endpoint Protection, prior to 14.2 RU2, may be susceptible to an unsigned code execution vulnerability, which may allow an individual to execute code without a resident proper digital signature.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages2 packages

▶NVDsymantec/endpoint_protection14.2+1

▶CVEListV5symantec_endpoint_protectionprior to 14.2 RU2

🔴Vulnerability Details

GHSA

GHSA-4q2j-4mf3-x29x: Symantec Endpoint Protection, prior to 14↗2022-05-24

▶

CVEList

CVE-2019-12758: Symantec Endpoint Protection, prior to 14↗2019-11-15

▶