Vulnerability Name:

CVE-2020-5821 (CCN-176095)

Assigned:2020-02-11
Published:2020-02-11
Updated:2021-07-21
Summary:Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to a DLL injection vulnerability, which is a type of issue whereby an individual attempts to execute their own code in place of legitimate code as a means to perform an exploit.
CVSS v3 Severity:7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-74
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2020-5821

Source: XF
Type: UNKNOWN
symantec-cve20205821-code-exec(176095)

Source: CCN
Type: Symantec Security Advisory SYMSA1505
Symantec Endpoint Protection Multiple Issues

Source: MISC
Type: Vendor Advisory
https://support.symantec.com/us/en/article.SYMSA1505.html

Vulnerable Configuration:Configuration 1:
  • cpe:/a:symantec:endpoint_protection:11.0:-:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr3:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr4:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr4-mp1a:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:mr4-mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru5:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru6:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru6-mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru6-mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru6a:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru6-mp3:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7-mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7-mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7-mp3:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7-mp4:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:11.0:ru7-mp4a:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:-:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru1-p1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru2-mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru3:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4-mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4-mp1a:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4-mp1b:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4a:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru5:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp3:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp4:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp5:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp6:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp7:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp8:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6-mp9:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.0:-:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.0:mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.0:mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.1:-:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.1:mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.0.1:mp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.2:-:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.2:mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.2:ru1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.2:ru1_mp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:14.2:ru2:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/a:symantec:endpoint_protection:12.0:rtm:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.0:ru1:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:-:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru1:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru1-mp1:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru2:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru2-mp1:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru3:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4-mp1:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4-mp1a:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru5:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4a:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru4-mp1b:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6_mp1:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6_mp2:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6_mp3:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6_mp4:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6_mp5:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6_mp6:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6_mp7:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6_mp8:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6_mp9:*:*:small_business:*:*:*
  • OR cpe:/a:symantec:endpoint_protection:12.1:ru6_mp10:*:*:small_business:*:*:*

    • Configuration CCN 1:
  • cpe:/a:symantec:endpoint_protection:14.2:-:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    symantec endpoint protection 11.0 -
    symantec endpoint protection 11.0 mr1
    symantec endpoint protection 11.0 mr2
    symantec endpoint protection 11.0 mr3
    symantec endpoint protection 11.0 mr4
    symantec endpoint protection 11.0 mr4-mp1a
    symantec endpoint protection 11.0 mr4-mp2
    symantec endpoint protection 11.0 ru5
    symantec endpoint protection 11.0 ru6
    symantec endpoint protection 11.0 ru6-mp1
    symantec endpoint protection 11.0 ru6-mp2
    symantec endpoint protection 11.0 ru6a
    symantec endpoint protection 11.0 ru6-mp3
    symantec endpoint protection 11.0 ru7
    symantec endpoint protection 11.0 ru7-mp1
    symantec endpoint protection 11.0 ru7-mp2
    symantec endpoint protection 11.0 ru7-mp3
    symantec endpoint protection 11.0 ru7-mp4
    symantec endpoint protection 11.0 ru7-mp4a
    symantec endpoint protection 12.1 -
    symantec endpoint protection 12.1 ru1
    symantec endpoint protection 12.1 ru1-p1
    symantec endpoint protection 12.1 ru2
    symantec endpoint protection 12.1 ru2-mp1
    symantec endpoint protection 12.1 ru3
    symantec endpoint protection 12.1 ru4
    symantec endpoint protection 12.1 ru4-mp1
    symantec endpoint protection 12.1 ru4-mp1a
    symantec endpoint protection 12.1 ru4-mp1b
    symantec endpoint protection 12.1 ru4a
    symantec endpoint protection 12.1 ru5
    symantec endpoint protection 12.1 ru6
    symantec endpoint protection 12.1 ru6-mp1
    symantec endpoint protection 12.1 ru6-mp2
    symantec endpoint protection 12.1 ru6-mp3
    symantec endpoint protection 12.1 ru6-mp4
    symantec endpoint protection 12.1 ru6-mp5
    symantec endpoint protection 12.1 ru6-mp6
    symantec endpoint protection 12.1 ru6-mp7
    symantec endpoint protection 12.1 ru6-mp8
    symantec endpoint protection 12.1 ru6-mp9
    symantec endpoint protection 14.0.0 -
    symantec endpoint protection 14.0.0 mp1
    symantec endpoint protection 14.0.0 mp2
    symantec endpoint protection 14.0.1 -
    symantec endpoint protection 14.0.1 mp1
    symantec endpoint protection 14.0.1 mp2
    symantec endpoint protection 14.2 -
    symantec endpoint protection 14.2 mp1
    symantec endpoint protection 14.2 ru1
    symantec endpoint protection 14.2 ru1_mp1
    symantec endpoint protection 14.2 ru2
    symantec endpoint protection 12.0 rtm
    symantec endpoint protection 12.0 ru1
    symantec endpoint protection 12.1 -
    symantec endpoint protection 12.1 ru1
    symantec endpoint protection 12.1 ru1-mp1
    symantec endpoint protection 12.1 ru2
    symantec endpoint protection 12.1 ru2-mp1
    symantec endpoint protection 12.1 ru3
    symantec endpoint protection 12.1 ru4
    symantec endpoint protection 12.1 ru4-mp1
    symantec endpoint protection 12.1 ru4-mp1a
    symantec endpoint protection 12.1 ru5
    symantec endpoint protection 12.1 ru4a
    symantec endpoint protection 12.1 ru4-mp1b
    symantec endpoint protection 12.1 ru6
    symantec endpoint protection 12.1 ru6_mp1
    symantec endpoint protection 12.1 ru6_mp2
    symantec endpoint protection 12.1 ru6_mp3
    symantec endpoint protection 12.1 ru6_mp4
    symantec endpoint protection 12.1 ru6_mp5
    symantec endpoint protection 12.1 ru6_mp6
    symantec endpoint protection 12.1 ru6_mp7
    symantec endpoint protection 12.1 ru6_mp8
    symantec endpoint protection 12.1 ru6_mp9
    symantec endpoint protection 12.1 ru6_mp10
    symantec endpoint protection 14.2 -