CVE-2015-8801
LOWSymantec Endpoint Protection Manager < 12.1.6 - Local Restriction Bypass via USB Device Race Condition
Title source: llmDescription
Race condition in the client in Symantec Endpoint Protection (SEP) 12.1 before RU6 MP5 allows local users to bypass intended restrictions on USB file transfer by conducting filesystem operations before the SEP device manager recognizes a new USB device.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160628_01
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1036196
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/91446
Scores
CVSS v3
2.9
EPSS
0.0006
EPSS Percentile
18.5%
Attack Vector
PHYSICAL
CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
Details
CWE
CWE-254
CWE-284
Status
published
Products (1)
symantec/endpoint_protection_manager
< 12.1.6
Published
Jun 30, 2016
Tracked Since
Feb 18, 2026