Vulnerability Details CVE-2016-6590
A privilege escalation vulnerability exists when loading DLLs during boot up and reboot in Symantec IT Management Suite 8.0 prior to 8.0 HF4 and Suite 7.6 prior to 7.6 HF7, Symantec Ghost Solution Suite 3.1 prior to 3.1 MP4, Symantec Endpoint Virtualization 7.x prior to 7.6 HF7, and Symantec Encryption Desktop 10.x prior to 10.4.1, which could let a local malicious user execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.5%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.4
References
Products affected by CVE-2016-6590
-
cpe:2.3:a:symantec:encryption_desktop:10.3.0
-
cpe:2.3:a:symantec:encryption_desktop:10.3.1
-
cpe:2.3:a:symantec:encryption_desktop:10.3.2
-
cpe:2.3:a:symantec:encryption_desktop:10.4.0
-
cpe:2.3:a:symantec:endpoint_encryption:7.0
-
cpe:2.3:a:symantec:endpoint_encryption:7.0.2
-
cpe:2.3:a:symantec:endpoint_encryption:7.0.3
-
cpe:2.3:a:symantec:endpoint_encryption:7.0.4
-
cpe:2.3:a:symantec:endpoint_encryption:7.0.5
-
cpe:2.3:a:symantec:endpoint_encryption:7.0.6
-
cpe:2.3:a:symantec:endpoint_encryption:7.0.7
-
cpe:2.3:a:symantec:endpoint_encryption:7.0.8
-
cpe:2.3:a:symantec:endpoint_encryption:7.6
-
cpe:2.3:a:symantec:ghost_solution_suite:3.1
-
cpe:2.3:a:symantec:it_management_suite:7.6
-
cpe:2.3:a:symantec:it_management_suite:8.0