CVE-2020-12593

HIGH

Symantec Endpoint Detection & Response <4.5 - Info Disclosure

Title source: llm

Description

Symantec Endpoint Detection & Response, prior to 4.5, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.

Exploits (1)

nomisec WRITEUP 1 stars

by nasbench · poc

https://github.com/nasbench/CVE-2020-12593

View Code ZIP pw:eip

References (1)

[Vendor Advisory] https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Endpoint-Detection-Response-Security-Update/SYMSA16562

Scores

CVSS v3 7.5

EPSS 0.0151

EPSS Percentile 81.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

Status published

Affected Products (1)

symantec/endpoint_detection_and_response < 4.5

Timeline

Published Nov 18, 2020

Tracked Since Feb 18, 2026