1. Home
  2. CVE Database
  3. CVE-2022-37015
CRITICAL · 9.8

CVE-2022-37015

Symantec Endpoint Detection and Response (SEDR) Appliance, prior to 4.7.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compr...

Vulnerability Description

Symantec Endpoint Detection and Response (SEDR) Appliance, prior to 4.7.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
SymantecEndpoint Detection And Response< 4.7.0

Related Weaknesses (CWE)

CWE-269

References

FAQ

What is CVE-2022-37015?

CVE-2022-37015 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Symantec Endpoint Detection and Response (SEDR) Appliance, prior to 4.7.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compr...

How severe is CVE-2022-37015?

CVE-2022-37015 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2022-37015?

Check the references section above for vendor advisories and patch information. Affected products include: Symantec Endpoint Detection And Response.