1) Information disclosure

EUVDB-ID: #VU54289

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2020-12596

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to session tokens can be exposed via the URL in a GET request. A remote attacker can obtain session token and gain unauthorized access to the application.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

Symantec Endpoint Protection Manager: 14 - 14.3

---

CPE2.3

• cpe:2.3:a:broadcom:symantec_endpoint_protection_manager:14.3:*:*:*:*:*:*:*

External links

http://support.broadcom.com/security-advisory/security-advisory-detail.html?notificationId=SYMSA18255

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

2) Uncaught Exception

EUVDB-ID: #VU54290

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2020-12597

CWE-ID: CWE-248 - Uncaught Exception

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service attack.

The vulnerability exists due to uncaught exception in a common driver. A local user can perform a denial of service attack.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

Symantec Endpoint Protection: 14 MP1 - 14.3 RU1

Data Center Security (DCS) Windows Agent: before 6.9.1

Cloud Workload Protection (CWP) Windows Client: before 1.6.1

---

CPE2.3

• cpe:2.3:a:broadcom:symantec_endpoint_protection:14.3:RU1:*:*:*:*:*:*

External links

http://support.broadcom.com/security-advisory/security-advisory-detail.html?notificationId=SYMSA18255

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?