1. CVE-Search
  2. CVE-2017-15526
ID CVE-2017-15526
Summary Prior to SEE v11.1.3MP1, Symantec Endpoint Encryption can be susceptible to a null pointer de-reference issue, which can result in a NullPointerException that can lead to a privilege escalation scenario.
References
Vulnerable Configurations
  • cpe:2.3:a:symantec:endpoint_encryption:6.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:6.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:6.2:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:6.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:6.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:6.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:6.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:7.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:7.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:7.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:7.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:7.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:7.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:7.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:7.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:7.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:7.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:7.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:7.0.7:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:7.0.8:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:7.0.8:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:7.6:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:7.6:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2:-:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2:-:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2:maintenance_pack_1:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2:maintenance_pack_1:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2:maintenance_pack_2:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2:maintenance_pack_2:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_1:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_1:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_11:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_11:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_12:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_12:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_13:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_13:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_14:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_14:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_15:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_15:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_16:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_16:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_2:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_2:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_3:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_3:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_4:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_4:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_5:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_5:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_6:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_6:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_7:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_7:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_8:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_8:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_9:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:8.2.1:maintenance_pack_9:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.0.0:-:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.0.0:-:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.0.0:maintenance_pack_1:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.0.0:maintenance_pack_1:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.0.0:maintenance_pack_2:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.0.0:maintenance_pack_2:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.0.0:maintenance_pack_3:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.0.0:maintenance_pack_3:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.0.1:-:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.0.1:-:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.0.1:maintenance_pack_1:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.0.1:maintenance_pack_1:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.1.1:-:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.1.1:-:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.1.1:maintenance_pack_1:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.1.1:maintenance_pack_1:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.1.1:maintenance_pack_2:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.1.1:maintenance_pack_2:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.1.3:-:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.1.3:-:*:*:*:*:*:*
  • cpe:2.3:a:symantec:endpoint_encryption:11.1.3:maintenance_pack_1:*:*:*:*:*:*
    cpe:2.3:a:symantec:endpoint_encryption:11.1.3:maintenance_pack_1:*:*:*:*:*:*
CVSS
Base: 5.2 (as of 29-11-2017 - 14:36)
Impact:
Exploitability:
CWE CWE-476
CAPEC
Access
VectorComplexityAuthentication
ADJACENT_NETWORK LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:A/AC:L/Au:S/C:P/I:P/A:P
refmap via4
bid 101698
confirm https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171113_00
Last major update 29-11-2017 - 14:36
Published 13-11-2017 - 22:29
Last modified 29-11-2017 - 14:36
Back to Top