Vulnerability Name:

CVE-2019-12756 (CCN-171581)

Assigned:2019-11-14
Published:2019-11-14
Updated:2020-08-24
Summary:Symantec Endpoint Protection (SEP), prior to 14.2 RU2 may be susceptible to a password protection bypass vulnerability whereby the secondary layer of password protection could by bypassed for individuals with local administrator rights.
CVSS v3 Severity:2.3 Low (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N)
2.0 Low (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): High
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
2.3 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N)
2.0 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): High
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
1.7 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-noinfo
Vulnerability Consequences:Bypass Security
References:Source: MITRE
Type: CNA
CVE-2019-12756

Source: XF
Type: UNKNOWN
symantec-cve201912756-sec-bypass(171581)

Source: CCN
Type: Symantec Security Advisory SYMSA1488
Symantec Endpoint Protection Multiple Issues

Source: MISC
Type: Patch, Vendor Advisory
https://support.symantec.com/us/en/article.SYMSA1488.html

Vulnerable Configuration:Configuration 1:
  • cpe:/a:symantec:endpoint_protection:11.0:-:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr3:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr4:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr4-mp1a:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr4-mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru5:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru6:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru6-mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru6-mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru6-mp3:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru6a:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7-mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7-mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7-mp3:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7-mp4:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7-mp4a:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:-:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru1-p1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru2-mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru3:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4-mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4-mp1a:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4-mp1b:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4a:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru5:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp3:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp4:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp5:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp6:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp7:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp8:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp9:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.0:-:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.0:mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.0:mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.1:-:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.1:mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.1:mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.2:-:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.2:mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.2:ru1:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:symantec:endpoint_protection:14.2:-:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    BACK
    symantec endpoint protection 11.0 -
    symantec endpoint protection 11.0 mr1
    symantec endpoint protection 11.0 mr2
    symantec endpoint protection 11.0 mr3
    symantec endpoint protection 11.0 mr4
    symantec endpoint protection 11.0 mr4-mp1a
    symantec endpoint protection 11.0 mr4-mp2
    symantec endpoint protection 11.0 ru5
    symantec endpoint protection 11.0 ru6
    symantec endpoint protection 11.0 ru6-mp1
    symantec endpoint protection 11.0 ru6-mp2
    symantec endpoint protection 11.0 ru6-mp3
    symantec endpoint protection 11.0 ru6a
    symantec endpoint protection 11.0 ru7
    symantec endpoint protection 11.0 ru7-mp1
    symantec endpoint protection 11.0 ru7-mp2
    symantec endpoint protection 11.0 ru7-mp3
    symantec endpoint protection 11.0 ru7-mp4
    symantec endpoint protection 11.0 ru7-mp4a
    symantec endpoint protection 12.1 -
    symantec endpoint protection 12.1 ru1
    symantec endpoint protection 12.1 ru1-p1
    symantec endpoint protection 12.1 ru2
    symantec endpoint protection 12.1 ru2-mp1
    symantec endpoint protection 12.1 ru3
    symantec endpoint protection 12.1 ru4
    symantec endpoint protection 12.1 ru4-mp1
    symantec endpoint protection 12.1 ru4-mp1a
    symantec endpoint protection 12.1 ru4-mp1b
    symantec endpoint protection 12.1 ru4a
    symantec endpoint protection 12.1 ru5
    symantec endpoint protection 12.1 ru6
    symantec endpoint protection 12.1 ru6-mp1
    symantec endpoint protection 12.1 ru6-mp2
    symantec endpoint protection 12.1 ru6-mp3
    symantec endpoint protection 12.1 ru6-mp4
    symantec endpoint protection 12.1 ru6-mp5
    symantec endpoint protection 12.1 ru6-mp6
    symantec endpoint protection 12.1 ru6-mp7
    symantec endpoint protection 12.1 ru6-mp8
    symantec endpoint protection 12.1 ru6-mp9
    symantec endpoint protection 14.0.0 -
    symantec endpoint protection 14.0.0 mp1
    symantec endpoint protection 14.0.0 mp2
    symantec endpoint protection 14.0.1 -
    symantec endpoint protection 14.0.1 mp1
    symantec endpoint protection 14.0.1 mp2
    symantec endpoint protection 14.2 -
    symantec endpoint protection 14.2 mp1
    symantec endpoint protection 14.2 ru1
    symantec endpoint protection 14.2 -