CVE-2018-18366
N/A
N/A
Summary
Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Symantec Corporation | Norton Security | Prior to 22.16.3 | affected |
| Symantec Corporation | SEP (Windows client) | Prior to and including 12.1 RU6 MP9 | affected |
| Symantec Corporation | SEP (Windows client) | Prior to 14.2 RU1 | affected |
| Symantec Corporation | SEP SBE | Prior to Cloud Agent 3.00.31.2817 | affected |
| Symantec Corporation | SEP SBE | NIS-22.15.2.22 | affected |
| Symantec Corporation | SEP SBE | SEP-12.1.7484.7002 | affected |
| Symantec Corporation | SEP Cloud | Prior to 22.16.3 | affected |
Weaknesses
- Kernel memory disclosure
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.