Vulnerability Description
The Inventory Plugin for Symantec Management Agent prior to 7.6 POST HF7, 8.0 POST HF6, or 8.1 RU7 may be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Inventory | <= 7.6 |
References
- http://www.securityfocus.com/bid/104753Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1041654Third Party Advisory
- https://support.symantec.com/en_US/article.SYMSA1456.htmlMitigationVendor Advisory
- http://www.securityfocus.com/bid/104753Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1041654Third Party Advisory
- https://support.symantec.com/en_US/article.SYMSA1456.htmlMitigationVendor Advisory
FAQ
What is CVE-2018-5240?
CVE-2018-5240 is a vulnerability with a CVSS score of 8.0 (HIGH). The Inventory Plugin for Symantec Management Agent prior to 7.6 POST HF7, 8.0 POST HF6, or 8.1 RU7 may be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a us...
How severe is CVE-2018-5240?
CVE-2018-5240 has been rated HIGH with a CVSS base score of 8.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-5240?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Inventory.