CVE-2026-3991

Summary

Symantec Data Loss Prevention Windows Endpoint, prior to 25.1 MP1, 16.1 MP2, 16.0 RU2 HF9, 16.0 RU1 MP1 HF12, and 16.0 MP2 HF15, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.

Affected Software

VendorProductVersion RangeStatus
BroadcomData Loss Prevention25.1.00100.60229unaffected
BroadcomData Loss Prevention16.1.00200.60431unaffected
BroadcomData Loss Prevention16.0.20009.60689unaffected
BroadcomData Loss Prevention16.0.10112.60928unaffected
BroadcomData Loss Prevention16.0.00215.62094unaffected

Weaknesses

  • CWE-829: CWE-829 Inclusion of functionality from untrusted control sphere

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References