cvelistv5 - cve-2018-18366

CVE-2018-18366 (GCVE-0-2018-18366)

Vulnerability from cvelistv5 – Published: 2019-04-25 19:13 – Updated: 2024-08-05 11:08

Summary

Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory.

Severity ?

No CVSS data available.

CWE

Kernel memory disclosure

Assigner

symantec

References

URL

Tags

	https://support.symantec.com/en_US/article.SYMSA1…	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/107994	vdb-entryx_refsource_BID

Impacted products

Vendor

Product

Version

Symantec Corporation

Norton Security

Affected: Prior to 22.16.3

Symantec Corporation	SEP (Windows client)	Affected: Prior to and including 12.1 RU6 MP9 Affected: Prior to 14.2 RU1
Symantec Corporation	SEP SBE	Affected: Prior to Cloud Agent 3.00.31.2817 Affected: NIS-22.15.2.22 Affected: SEP-12.1.7484.7002
Symantec Corporation	SEP Cloud	Affected: Prior to 22.16.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T11:08:21.470Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
          },
          {
            "name": "107994",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/107994"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Norton Security",
          "vendor": "Symantec Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Prior to 22.16.3"
            }
          ]
        },
        {
          "product": "SEP (Windows client)",
          "vendor": "Symantec Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Prior to and including 12.1 RU6 MP9"
            },
            {
              "status": "affected",
              "version": "Prior to 14.2 RU1"
            }
          ]
        },
        {
          "product": "SEP SBE",
          "vendor": "Symantec Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Prior to Cloud Agent 3.00.31.2817"
            },
            {
              "status": "affected",
              "version": "NIS-22.15.2.22"
            },
            {
              "status": "affected",
              "version": "SEP-12.1.7484.7002"
            }
          ]
        },
        {
          "product": "SEP Cloud",
          "vendor": "Symantec Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "Prior to 22.16.3"
            }
          ]
        }
      ],
      "datePublic": "2019-04-15T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Kernel memory disclosure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-04-25T19:13:05",
        "orgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
        "shortName": "symantec"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
        },
        {
          "name": "107994",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/107994"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@symantec.com",
          "ID": "CVE-2018-18366",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Norton Security",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Prior to 22.16.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SEP (Windows client)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Prior to and including 12.1 RU6 MP9"
                          },
                          {
                            "version_value": "Prior to 14.2 RU1"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SEP SBE",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Prior to Cloud Agent 3.00.31.2817"
                          },
                          {
                            "version_value": "NIS-22.15.2.22"
                          },
                          {
                            "version_value": "SEP-12.1.7484.7002"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SEP Cloud",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Prior to 22.16.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Symantec Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Kernel memory disclosure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.symantec.com/en_US/article.SYMSA1479.html",
              "refsource": "CONFIRM",
              "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
            },
            {
              "name": "107994",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/107994"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
    "assignerShortName": "symantec",
    "cveId": "CVE-2018-18366",
    "datePublished": "2019-04-25T19:13:05",
    "dateReserved": "2018-10-15T00:00:00",
    "dateUpdated": "2024-08-05T11:08:21.470Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:*:*:*:*:windows:*:*\", \"matchCriteriaId\": \"D5DDAD68-240B-4369-8D7D-B10239C54747\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:mr1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"3D9F3D24-2F6B-4DBB-9BAD-B675F531B9C8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:mr2:*:*:*:windows:*:*\", \"matchCriteriaId\": \"69DA24CB-9464-4DBA-9757-CBF3253D324C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:mr3:*:*:*:windows:*:*\", \"matchCriteriaId\": \"5708D207-5F1E-4CC5-89B0-9872F8021736\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:mr4:*:*:*:windows:*:*\", \"matchCriteriaId\": \"DA616B75-7FAA-4DFF-9E3C-9BF05D90C4AA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:mr4-mp2:*:*:*:windows:*:*\", \"matchCriteriaId\": \"F728FD54-72A2-4C64-8EBA-AB516AFEB930\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru5:*:*:*:windows:*:*\", \"matchCriteriaId\": \"C7D78695-4229-4163-A937-30B0FB97568A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru6:*:*:*:windows:*:*\", \"matchCriteriaId\": \"665E9936-F11A-47C2-9919-7B9F236ED003\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"5EA8075B-DF2C-4A6C-B30D-405196C0E15C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp2:*:*:*:windows:*:*\", \"matchCriteriaId\": \"506BD1F7-0B85-4DD2-A56B-6D84ECC1598B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp3:*:*:*:windows:*:*\", \"matchCriteriaId\": \"46D9A4AF-B880-4AA3-B5A9-FB2F67AD8CDE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru6a:*:*:*:windows:*:*\", \"matchCriteriaId\": \"56382DCA-103C-4833-A950-6DB90102F208\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru7:*:*:*:windows:*:*\", \"matchCriteriaId\": \"E0591908-0AD7-4DE6-B28D-DFA9CA6C29A0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"85E4AE96-9917-4674-B08D-B8B5DEADB58D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp2:*:*:*:windows:*:*\", \"matchCriteriaId\": \"E5DB21D2-0ACD-468B-8144-10FCD7DCB428\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp4:*:*:*:windows:*:*\", \"matchCriteriaId\": \"E9AD8898-62A9-40D1-9FA2-D980D5BB41DD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp4a:*:*:*:windows:*:*\", \"matchCriteriaId\": \"FC5F57A5-EAE3-4553-98C1-38C11C04D178\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:11.0:ry7-mp3:*:*:*:windows:*:*\", \"matchCriteriaId\": \"76D3A7B5-3151-4442-B256-A60BC5A7915E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:*:*:*:*:windows:*:*\", \"matchCriteriaId\": \"CD6A8A38-4199-4E73-894F-BA388FCA20EB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"BF0DBAF4-95F3-4AA9-B9E6-4E9D9EEC56EE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru1-mp1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"04378076-3B34-4F9F-AFE3-F740D6770C86\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru2:*:*:*:windows:*:*\", \"matchCriteriaId\": \"63A3DDBE-9B09-44E3-A899-6F0C9C88CDC8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru2-mp1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"BD6EA05C-1748-4143-93A9-8CE5B336EA21\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru3:*:*:*:windows:*:*\", \"matchCriteriaId\": \"505C8AD8-E527-49F9-96AE-B9DAE32A634B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru4:*:*:*:windows:*:*\", \"matchCriteriaId\": \"E07ABDF7-6A4D-4CB1-8CA1-1708F25B89B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"8941F807-54BA-491B-B001-EC37843BAAB3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1a:*:*:*:windows:*:*\", \"matchCriteriaId\": \"29A8D0C5-9389-4340-879A-033ED39D6A5C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1b:*:*:*:windows:*:*\", \"matchCriteriaId\": \"BA24E896-329C-41DC-AF82-50D8479DE874\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru4a:*:*:*:windows:*:*\", \"matchCriteriaId\": \"3C615B28-E03C-4DDC-A669-BADE920C0213\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru5:*:*:*:windows:*:*\", \"matchCriteriaId\": \"E63D215D-0861-4128-9CDC-03ACF0B7BDFA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6:*:*:*:windows:*:*\", \"matchCriteriaId\": \"E5810456-C8B7-4716-8836-8C23CF0D8503\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"C9FEE5B1-CBF7-491E-B818-360C70EE6E1A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp10:*:*:*:windows:*:*\", \"matchCriteriaId\": \"931383D4-DE13-4E90-B9D3-EDAA157E9A0F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp2:*:*:*:windows:*:*\", \"matchCriteriaId\": \"3C10597C-BC98-46DF-A264-C6F782E22256\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp3:*:*:*:windows:*:*\", \"matchCriteriaId\": \"8FB5E6EE-0336-4C51-A348-DF6669D424F4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp4:*:*:*:windows:*:*\", \"matchCriteriaId\": \"DCBEC4B9-10F8-48B8-BE07-9646F4D15CF2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp5:*:*:*:windows:*:*\", \"matchCriteriaId\": \"F7F7472F-8126-420C-B04E-112A01865804\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp6:*:*:*:windows:*:*\", \"matchCriteriaId\": \"309BB292-60D3-4D6A-A9EB-B1741A202162\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp7:*:*:*:windows:*:*\", \"matchCriteriaId\": \"57354358-0C2D-4DE4-BE79-1EA80A20517C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp8:*:*:*:windows:*:*\", \"matchCriteriaId\": \"737E64E5-3F7B-4C5D-B1AB-54241D9C8852\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:14:*:*:*:*:windows:*:*\", \"matchCriteriaId\": \"DD3E3D04-80C5-46B6-A1AC-EF0AA15F9CB3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:14:mp1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"FE526090-27CE-4CA8-84FD-37973B75BE28\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:14.0.0:mp2:*:*:*:windows:*:*\", \"matchCriteriaId\": \"4853BEBB-F207-489E-ABEB-AE2A8AEC2086\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:14.0.1:*:*:*:*:windows:*:*\", \"matchCriteriaId\": \"E86D69CD-40A6-4F8E-8B07-41D6E3B8FD32\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:14.0.1:mp1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"4C30BA87-1FD2-4CBE-AC8B-AA57B9AA91D6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:14.0.1:mp2:*:*:*:windows:*:*\", \"matchCriteriaId\": \"F3A02563-3A73-44E9-8169-5904B93CEB12\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:14.2:*:*:*:*:windows:*:*\", \"matchCriteriaId\": \"D088B925-70DF-4CA1-B840-81C10F52049A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:14.2:mp1:*:*:*:windows:*:*\", \"matchCriteriaId\": \"901E887F-74DA-457B-A124-F3692CE76209\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:nis-22.15.2.22:*:*:*:small_business:*:*:*\", \"matchCriteriaId\": \"F562DF12-99D5-4111-9CD6-D1E5B7920225\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection:sep-12.1.7484.7002:*:*:*:small_business:*:*:*\", \"matchCriteriaId\": \"33FAAF42-04C9-430C-8C9A-F707AB6B469C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection_cloud:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"22.16.3\", \"matchCriteriaId\": \"31AFAAF0-ED33-4C9E-9708-456766A8A61F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:endpoint_protection_cloud_agent:*:*:*:*:small_business:*:*:*\", \"versionEndExcluding\": \"3.00.31.2817\", \"matchCriteriaId\": \"5B36DE59-81E1-4800-96CB-C9281C15E2F5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:norton_security:*:*:*:*:*:windows:*:*\", \"versionEndExcluding\": \"22.16.3\", \"matchCriteriaId\": \"C5C50AD8-9816-4DDE-B8A7-1243BF2E56BF\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory.\"}, {\"lang\": \"es\", \"value\": \"Symantec Norton Security, versiones anteriores a 22.16.3, SEP (cliente Windows) versiones anteriores e incluyendo a 12.1 RU6 MP9 y anteriores a 14.2 RU1, SEP SBE anteriores a Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 y SEP Cloud en versiones anteriores a 22.16.3 pueden ser susceptibles a una revelaci\\u00f3n de la memoria del n\\u00facleo, que es un tipo de problema en el que una petici\\u00f3n IRP especialmente dise\\u00f1ada puede hacer que el controlador devuelva la memoria no inicializada.\"}]",
      "id": "CVE-2018-18366",
      "lastModified": "2024-11-21T03:55:48.100",
      "metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.0, \"impactScore\": 4.0}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 2.1, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.9, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2019-04-25T20:29:02.177",
      "references": "[{\"url\": \"http://www.securityfocus.com/bid/107994\", \"source\": \"secure@symantec.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://support.symantec.com/en_US/article.SYMSA1479.html\", \"source\": \"secure@symantec.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/107994\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://support.symantec.com/en_US/article.SYMSA1479.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "secure@symantec.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-908\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2018-18366\",\"sourceIdentifier\":\"secure@symantec.com\",\"published\":\"2019-04-25T20:29:02.177\",\"lastModified\":\"2024-11-21T03:55:48.100\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory.\"},{\"lang\":\"es\",\"value\":\"Symantec Norton Security, versiones anteriores a 22.16.3, SEP (cliente Windows) versiones anteriores e incluyendo a 12.1 RU6 MP9 y anteriores a 14.2 RU1, SEP SBE anteriores a Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 y SEP Cloud en versiones anteriores a 22.16.3 pueden ser susceptibles a una revelaci\u00f3n de la memoria del n\u00facleo, que es un tipo de problema en el que una petici\u00f3n IRP especialmente dise\u00f1ada puede hacer que el controlador devuelva la memoria no inicializada.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.0,\"impactScore\":4.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-908\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:*:*:*:*:windows:*:*\",\"matchCriteriaId\":\"D5DDAD68-240B-4369-8D7D-B10239C54747\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:mr1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"3D9F3D24-2F6B-4DBB-9BAD-B675F531B9C8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:mr2:*:*:*:windows:*:*\",\"matchCriteriaId\":\"69DA24CB-9464-4DBA-9757-CBF3253D324C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:mr3:*:*:*:windows:*:*\",\"matchCriteriaId\":\"5708D207-5F1E-4CC5-89B0-9872F8021736\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:mr4:*:*:*:windows:*:*\",\"matchCriteriaId\":\"DA616B75-7FAA-4DFF-9E3C-9BF05D90C4AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:mr4-mp2:*:*:*:windows:*:*\",\"matchCriteriaId\":\"F728FD54-72A2-4C64-8EBA-AB516AFEB930\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru5:*:*:*:windows:*:*\",\"matchCriteriaId\":\"C7D78695-4229-4163-A937-30B0FB97568A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru6:*:*:*:windows:*:*\",\"matchCriteriaId\":\"665E9936-F11A-47C2-9919-7B9F236ED003\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"5EA8075B-DF2C-4A6C-B30D-405196C0E15C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp2:*:*:*:windows:*:*\",\"matchCriteriaId\":\"506BD1F7-0B85-4DD2-A56B-6D84ECC1598B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp3:*:*:*:windows:*:*\",\"matchCriteriaId\":\"46D9A4AF-B880-4AA3-B5A9-FB2F67AD8CDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru6a:*:*:*:windows:*:*\",\"matchCriteriaId\":\"56382DCA-103C-4833-A950-6DB90102F208\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru7:*:*:*:windows:*:*\",\"matchCriteriaId\":\"E0591908-0AD7-4DE6-B28D-DFA9CA6C29A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"85E4AE96-9917-4674-B08D-B8B5DEADB58D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp2:*:*:*:windows:*:*\",\"matchCriteriaId\":\"E5DB21D2-0ACD-468B-8144-10FCD7DCB428\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp4:*:*:*:windows:*:*\",\"matchCriteriaId\":\"E9AD8898-62A9-40D1-9FA2-D980D5BB41DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp4a:*:*:*:windows:*:*\",\"matchCriteriaId\":\"FC5F57A5-EAE3-4553-98C1-38C11C04D178\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:11.0:ry7-mp3:*:*:*:windows:*:*\",\"matchCriteriaId\":\"76D3A7B5-3151-4442-B256-A60BC5A7915E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:*:*:*:*:windows:*:*\",\"matchCriteriaId\":\"CD6A8A38-4199-4E73-894F-BA388FCA20EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"BF0DBAF4-95F3-4AA9-B9E6-4E9D9EEC56EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru1-mp1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"04378076-3B34-4F9F-AFE3-F740D6770C86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru2:*:*:*:windows:*:*\",\"matchCriteriaId\":\"63A3DDBE-9B09-44E3-A899-6F0C9C88CDC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru2-mp1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"BD6EA05C-1748-4143-93A9-8CE5B336EA21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru3:*:*:*:windows:*:*\",\"matchCriteriaId\":\"505C8AD8-E527-49F9-96AE-B9DAE32A634B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru4:*:*:*:windows:*:*\",\"matchCriteriaId\":\"E07ABDF7-6A4D-4CB1-8CA1-1708F25B89B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"8941F807-54BA-491B-B001-EC37843BAAB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1a:*:*:*:windows:*:*\",\"matchCriteriaId\":\"29A8D0C5-9389-4340-879A-033ED39D6A5C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1b:*:*:*:windows:*:*\",\"matchCriteriaId\":\"BA24E896-329C-41DC-AF82-50D8479DE874\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru4a:*:*:*:windows:*:*\",\"matchCriteriaId\":\"3C615B28-E03C-4DDC-A669-BADE920C0213\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru5:*:*:*:windows:*:*\",\"matchCriteriaId\":\"E63D215D-0861-4128-9CDC-03ACF0B7BDFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6:*:*:*:windows:*:*\",\"matchCriteriaId\":\"E5810456-C8B7-4716-8836-8C23CF0D8503\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"C9FEE5B1-CBF7-491E-B818-360C70EE6E1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp10:*:*:*:windows:*:*\",\"matchCriteriaId\":\"931383D4-DE13-4E90-B9D3-EDAA157E9A0F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp2:*:*:*:windows:*:*\",\"matchCriteriaId\":\"3C10597C-BC98-46DF-A264-C6F782E22256\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp3:*:*:*:windows:*:*\",\"matchCriteriaId\":\"8FB5E6EE-0336-4C51-A348-DF6669D424F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp4:*:*:*:windows:*:*\",\"matchCriteriaId\":\"DCBEC4B9-10F8-48B8-BE07-9646F4D15CF2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp5:*:*:*:windows:*:*\",\"matchCriteriaId\":\"F7F7472F-8126-420C-B04E-112A01865804\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp6:*:*:*:windows:*:*\",\"matchCriteriaId\":\"309BB292-60D3-4D6A-A9EB-B1741A202162\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp7:*:*:*:windows:*:*\",\"matchCriteriaId\":\"57354358-0C2D-4DE4-BE79-1EA80A20517C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp8:*:*:*:windows:*:*\",\"matchCriteriaId\":\"737E64E5-3F7B-4C5D-B1AB-54241D9C8852\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:14:*:*:*:*:windows:*:*\",\"matchCriteriaId\":\"DD3E3D04-80C5-46B6-A1AC-EF0AA15F9CB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:14:mp1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"FE526090-27CE-4CA8-84FD-37973B75BE28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:14.0.0:mp2:*:*:*:windows:*:*\",\"matchCriteriaId\":\"4853BEBB-F207-489E-ABEB-AE2A8AEC2086\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:14.0.1:*:*:*:*:windows:*:*\",\"matchCriteriaId\":\"E86D69CD-40A6-4F8E-8B07-41D6E3B8FD32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:14.0.1:mp1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"4C30BA87-1FD2-4CBE-AC8B-AA57B9AA91D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:14.0.1:mp2:*:*:*:windows:*:*\",\"matchCriteriaId\":\"F3A02563-3A73-44E9-8169-5904B93CEB12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:14.2:*:*:*:*:windows:*:*\",\"matchCriteriaId\":\"D088B925-70DF-4CA1-B840-81C10F52049A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:14.2:mp1:*:*:*:windows:*:*\",\"matchCriteriaId\":\"901E887F-74DA-457B-A124-F3692CE76209\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:nis-22.15.2.22:*:*:*:small_business:*:*:*\",\"matchCriteriaId\":\"F562DF12-99D5-4111-9CD6-D1E5B7920225\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection:sep-12.1.7484.7002:*:*:*:small_business:*:*:*\",\"matchCriteriaId\":\"33FAAF42-04C9-430C-8C9A-F707AB6B469C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection_cloud:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"22.16.3\",\"matchCriteriaId\":\"31AFAAF0-ED33-4C9E-9708-456766A8A61F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:endpoint_protection_cloud_agent:*:*:*:*:small_business:*:*:*\",\"versionEndExcluding\":\"3.00.31.2817\",\"matchCriteriaId\":\"5B36DE59-81E1-4800-96CB-C9281C15E2F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:norton_security:*:*:*:*:*:windows:*:*\",\"versionEndExcluding\":\"22.16.3\",\"matchCriteriaId\":\"C5C50AD8-9816-4DDE-B8A7-1243BF2E56BF\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/107994\",\"source\":\"secure@symantec.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://support.symantec.com/en_US/article.SYMSA1479.html\",\"source\":\"secure@symantec.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/107994\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://support.symantec.com/en_US/article.SYMSA1479.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

GSD-2018-18366

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2018-18366

Aliases

CVE-2018-18366

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-18366",
    "description": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory.",
    "id": "GSD-2018-18366"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-18366"
      ],
      "details": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory.",
      "id": "GSD-2018-18366",
      "modified": "2023-12-13T01:22:35.890932Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secure@symantec.com",
        "ID": "CVE-2018-18366",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Norton Security",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "Prior to 22.16.3"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "SEP (Windows client)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "Prior to and including 12.1 RU6 MP9"
                        },
                        {
                          "version_value": "Prior to 14.2 RU1"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "SEP SBE",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "Prior to Cloud Agent 3.00.31.2817"
                        },
                        {
                          "version_value": "NIS-22.15.2.22"
                        },
                        {
                          "version_value": "SEP-12.1.7484.7002"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "SEP Cloud",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "Prior to 22.16.3"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Symantec Corporation"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Kernel memory disclosure"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://support.symantec.com/en_US/article.SYMSA1479.html",
            "refsource": "CONFIRM",
            "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
          },
          {
            "name": "107994",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/107994"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:symantec:norton_security:*:*:*:*:*:windows:*:*",
                "cpe_name": [],
                "versionEndExcluding": "22.16.3",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:14.2:*:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp10:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru1-mp1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1b:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp4:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp6:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:mr4:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru5:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru6a:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection_cloud_agent:*:*:*:*:small_business:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "3.00.31.2817",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:sep-12.1.7484.7002:*:*:*:small_business:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:nis-22.15.2.22:*:*:*:small_business:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection_cloud:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "22.16.3",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru2:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru2-mp1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru3:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru4:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp8:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:*:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:mr1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:mr2:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ry7-mp3:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp4:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp4a:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:*:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:14.0.1:mp2:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:14.0.1:*:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:14.0.0:mp2:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:14:mp1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru5:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp2:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp3:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru6:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp2:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp3:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:14.2:mp1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:14.0.1:mp1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:14:*:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru1:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1a:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru4a:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp5:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp7:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:mr3:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:mr4-mp2:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru7:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp2:*:*:*:windows:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@symantec.com",
          "ID": "CVE-2018-18366"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-908"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.symantec.com/en_US/article.SYMSA1479.html",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
            },
            {
              "name": "107994",
              "refsource": "BID",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/107994"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 2.0,
          "impactScore": 4.0
        }
      },
      "lastModifiedDate": "2020-08-24T17:37Z",
      "publishedDate": "2019-04-25T20:29Z"
    }
  }
}

FKIE_CVE-2018-18366

Vulnerability from fkie_nvd - Published: 2019-04-25 20:29 - Updated: 2024-11-21 03:55

Severity ?

6.5 (Medium) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Summary

References

URL	Tags
secure@symantec.com	http://www.securityfocus.com/bid/107994	Third Party Advisory, VDB Entry
secure@symantec.com	https://support.symantec.com/en_US/article.SYMSA1479.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/107994	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://support.symantec.com/en_US/article.SYMSA1479.html	Vendor Advisory

Impacted products

Vendor	Product	Version
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	11.0
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	12.1
symantec	endpoint_protection	14
symantec	endpoint_protection	14
symantec	endpoint_protection	14.0.0
symantec	endpoint_protection	14.0.1
symantec	endpoint_protection	14.0.1
symantec	endpoint_protection	14.0.1
symantec	endpoint_protection	14.2
symantec	endpoint_protection	14.2
symantec	endpoint_protection	nis-22.15.2.22
symantec	endpoint_protection	sep-12.1.7484.7002
symantec	endpoint_protection_cloud	*
symantec	endpoint_protection_cloud_agent	*
symantec	norton_security	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:*:*:*:*:windows:*:*",
              "matchCriteriaId": "D5DDAD68-240B-4369-8D7D-B10239C54747",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:mr1:*:*:*:windows:*:*",
              "matchCriteriaId": "3D9F3D24-2F6B-4DBB-9BAD-B675F531B9C8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:mr2:*:*:*:windows:*:*",
              "matchCriteriaId": "69DA24CB-9464-4DBA-9757-CBF3253D324C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:mr3:*:*:*:windows:*:*",
              "matchCriteriaId": "5708D207-5F1E-4CC5-89B0-9872F8021736",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:mr4:*:*:*:windows:*:*",
              "matchCriteriaId": "DA616B75-7FAA-4DFF-9E3C-9BF05D90C4AA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:mr4-mp2:*:*:*:windows:*:*",
              "matchCriteriaId": "F728FD54-72A2-4C64-8EBA-AB516AFEB930",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru5:*:*:*:windows:*:*",
              "matchCriteriaId": "C7D78695-4229-4163-A937-30B0FB97568A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru6:*:*:*:windows:*:*",
              "matchCriteriaId": "665E9936-F11A-47C2-9919-7B9F236ED003",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp1:*:*:*:windows:*:*",
              "matchCriteriaId": "5EA8075B-DF2C-4A6C-B30D-405196C0E15C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp2:*:*:*:windows:*:*",
              "matchCriteriaId": "506BD1F7-0B85-4DD2-A56B-6D84ECC1598B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru6-mp3:*:*:*:windows:*:*",
              "matchCriteriaId": "46D9A4AF-B880-4AA3-B5A9-FB2F67AD8CDE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru6a:*:*:*:windows:*:*",
              "matchCriteriaId": "56382DCA-103C-4833-A950-6DB90102F208",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru7:*:*:*:windows:*:*",
              "matchCriteriaId": "E0591908-0AD7-4DE6-B28D-DFA9CA6C29A0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp1:*:*:*:windows:*:*",
              "matchCriteriaId": "85E4AE96-9917-4674-B08D-B8B5DEADB58D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp2:*:*:*:windows:*:*",
              "matchCriteriaId": "E5DB21D2-0ACD-468B-8144-10FCD7DCB428",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp4:*:*:*:windows:*:*",
              "matchCriteriaId": "E9AD8898-62A9-40D1-9FA2-D980D5BB41DD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ru7-mp4a:*:*:*:windows:*:*",
              "matchCriteriaId": "FC5F57A5-EAE3-4553-98C1-38C11C04D178",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:11.0:ry7-mp3:*:*:*:windows:*:*",
              "matchCriteriaId": "76D3A7B5-3151-4442-B256-A60BC5A7915E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:*:*:*:*:windows:*:*",
              "matchCriteriaId": "CD6A8A38-4199-4E73-894F-BA388FCA20EB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru1:*:*:*:windows:*:*",
              "matchCriteriaId": "BF0DBAF4-95F3-4AA9-B9E6-4E9D9EEC56EE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru1-mp1:*:*:*:windows:*:*",
              "matchCriteriaId": "04378076-3B34-4F9F-AFE3-F740D6770C86",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru2:*:*:*:windows:*:*",
              "matchCriteriaId": "63A3DDBE-9B09-44E3-A899-6F0C9C88CDC8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru2-mp1:*:*:*:windows:*:*",
              "matchCriteriaId": "BD6EA05C-1748-4143-93A9-8CE5B336EA21",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru3:*:*:*:windows:*:*",
              "matchCriteriaId": "505C8AD8-E527-49F9-96AE-B9DAE32A634B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru4:*:*:*:windows:*:*",
              "matchCriteriaId": "E07ABDF7-6A4D-4CB1-8CA1-1708F25B89B8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1:*:*:*:windows:*:*",
              "matchCriteriaId": "8941F807-54BA-491B-B001-EC37843BAAB3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1a:*:*:*:windows:*:*",
              "matchCriteriaId": "29A8D0C5-9389-4340-879A-033ED39D6A5C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru4-mp1b:*:*:*:windows:*:*",
              "matchCriteriaId": "BA24E896-329C-41DC-AF82-50D8479DE874",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru4a:*:*:*:windows:*:*",
              "matchCriteriaId": "3C615B28-E03C-4DDC-A669-BADE920C0213",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru5:*:*:*:windows:*:*",
              "matchCriteriaId": "E63D215D-0861-4128-9CDC-03ACF0B7BDFA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6:*:*:*:windows:*:*",
              "matchCriteriaId": "E5810456-C8B7-4716-8836-8C23CF0D8503",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp1:*:*:*:windows:*:*",
              "matchCriteriaId": "C9FEE5B1-CBF7-491E-B818-360C70EE6E1A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp10:*:*:*:windows:*:*",
              "matchCriteriaId": "931383D4-DE13-4E90-B9D3-EDAA157E9A0F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp2:*:*:*:windows:*:*",
              "matchCriteriaId": "3C10597C-BC98-46DF-A264-C6F782E22256",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp3:*:*:*:windows:*:*",
              "matchCriteriaId": "8FB5E6EE-0336-4C51-A348-DF6669D424F4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp4:*:*:*:windows:*:*",
              "matchCriteriaId": "DCBEC4B9-10F8-48B8-BE07-9646F4D15CF2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp5:*:*:*:windows:*:*",
              "matchCriteriaId": "F7F7472F-8126-420C-B04E-112A01865804",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp6:*:*:*:windows:*:*",
              "matchCriteriaId": "309BB292-60D3-4D6A-A9EB-B1741A202162",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp7:*:*:*:windows:*:*",
              "matchCriteriaId": "57354358-0C2D-4DE4-BE79-1EA80A20517C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:12.1:ru6-mp8:*:*:*:windows:*:*",
              "matchCriteriaId": "737E64E5-3F7B-4C5D-B1AB-54241D9C8852",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:14:*:*:*:*:windows:*:*",
              "matchCriteriaId": "DD3E3D04-80C5-46B6-A1AC-EF0AA15F9CB3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:14:mp1:*:*:*:windows:*:*",
              "matchCriteriaId": "FE526090-27CE-4CA8-84FD-37973B75BE28",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:14.0.0:mp2:*:*:*:windows:*:*",
              "matchCriteriaId": "4853BEBB-F207-489E-ABEB-AE2A8AEC2086",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:14.0.1:*:*:*:*:windows:*:*",
              "matchCriteriaId": "E86D69CD-40A6-4F8E-8B07-41D6E3B8FD32",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:14.0.1:mp1:*:*:*:windows:*:*",
              "matchCriteriaId": "4C30BA87-1FD2-4CBE-AC8B-AA57B9AA91D6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:14.0.1:mp2:*:*:*:windows:*:*",
              "matchCriteriaId": "F3A02563-3A73-44E9-8169-5904B93CEB12",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:14.2:*:*:*:*:windows:*:*",
              "matchCriteriaId": "D088B925-70DF-4CA1-B840-81C10F52049A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:14.2:mp1:*:*:*:windows:*:*",
              "matchCriteriaId": "901E887F-74DA-457B-A124-F3692CE76209",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:nis-22.15.2.22:*:*:*:small_business:*:*:*",
              "matchCriteriaId": "F562DF12-99D5-4111-9CD6-D1E5B7920225",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection:sep-12.1.7484.7002:*:*:*:small_business:*:*:*",
              "matchCriteriaId": "33FAAF42-04C9-430C-8C9A-F707AB6B469C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection_cloud:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "31AFAAF0-ED33-4C9E-9708-456766A8A61F",
              "versionEndExcluding": "22.16.3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:endpoint_protection_cloud_agent:*:*:*:*:small_business:*:*:*",
              "matchCriteriaId": "5B36DE59-81E1-4800-96CB-C9281C15E2F5",
              "versionEndExcluding": "3.00.31.2817",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:norton_security:*:*:*:*:*:windows:*:*",
              "matchCriteriaId": "C5C50AD8-9816-4DDE-B8A7-1243BF2E56BF",
              "versionEndExcluding": "22.16.3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory."
    },
    {
      "lang": "es",
      "value": "Symantec Norton Security, versiones anteriores a 22.16.3, SEP (cliente Windows) versiones anteriores e incluyendo a 12.1 RU6 MP9 y anteriores a 14.2 RU1, SEP SBE anteriores a Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 y SEP Cloud en versiones anteriores a 22.16.3 pueden ser susceptibles a una revelaci\u00f3n de la memoria del n\u00facleo, que es un tipo de problema en el que una petici\u00f3n IRP especialmente dise\u00f1ada puede hacer que el controlador devuelva la memoria no inicializada."
    }
  ],
  "id": "CVE-2018-18366",
  "lastModified": "2024-11-21T03:55:48.100",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 2.1,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.0,
        "impactScore": 4.0,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2019-04-25T20:29:02.177",
  "references": [
    {
      "source": "secure@symantec.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/107994"
    },
    {
      "source": "secure@symantec.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/107994"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
    }
  ],
  "sourceIdentifier": "secure@symantec.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-908"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CNVD-2019-13246

Vulnerability from cnvd - Published: 2019-05-07

Title

Symantec Endpoint Protection信息泄露漏洞

Description

Symantec Endpoint Protection是美国赛门铁克（Symantec）公司的一套防病毒软件。该软件可跨物理和虚拟系统提供安全防护功能。 Symantec Endpoint Protection（Small Business Edition）中的ccSetx86.sys文件的0x224844 IOCTL handler功能存在信息泄露漏洞，该漏洞源于网络系统或产品在运行过程中存在配置等错误。未授权的攻击者可利用漏洞获取受影响组件敏感信息。

Severity

低

Patch Name

Symantec Endpoint Protection信息泄露漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://support.symantec.com/content/unifiedweb/en_US/article.SYMSA1479.html

Reference

https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0693

Impacted products

Name
['Symantec Norton Security 22.15.1', 'Symantec Norton Security 22.0.2', 'Symantec Norton Security 22.15.2.22', 'Symantec Norton Security 22.12.0.104', 'Symantec Endpoint Protection Cloud Agent', 'Symantec Endpoint Protection Cloud 22.9', 'Symantec Endpoint Protection Cloud 22.15', 'Symantec Endpoint Protection Small Business Edition', 'Symantec Endpoint Protection 14.0', 'Symantec Endpoint Protection 14 RU1', 'Symantec Endpoint Protection 12.1.7484.7002', 'Symantec Endpoint Protection 12.1 RU6 MP9', 'Symantec Endpoint Protection 12.1 RU6 MP10', 'Symantec Endpoint Protection 12.1 RU6']

Name

['Symantec Norton Security 22.15.1', 'Symantec Norton Security 22.0.2', 'Symantec Norton Security 22.15.2.22', 'Symantec Norton Security 22.12.0.104', 'Symantec Endpoint Protection Cloud Agent', 'Symantec Endpoint Protection Cloud 22.9', 'Symantec Endpoint Protection Cloud 22.15', 'Symantec Endpoint Protection Small Business Edition', 'Symantec Endpoint Protection 14.0', 'Symantec Endpoint Protection 14 RU1', 'Symantec Endpoint Protection 12.1.7484.7002', 'Symantec Endpoint Protection 12.1 RU6 MP9', 'Symantec Endpoint Protection 12.1 RU6 MP10', 'Symantec Endpoint Protection 12.1 RU6']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-18366"
    }
  },
  "description": "Symantec Endpoint Protection\u662f\u7f8e\u56fd\u8d5b\u95e8\u94c1\u514b\uff08Symantec\uff09\u516c\u53f8\u7684\u4e00\u5957\u9632\u75c5\u6bd2\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u53ef\u8de8\u7269\u7406\u548c\u865a\u62df\u7cfb\u7edf\u63d0\u4f9b\u5b89\u5168\u9632\u62a4\u529f\u80fd\u3002\n\nSymantec Endpoint Protection\uff08Small Business Edition\uff09\u4e2d\u7684ccSetx86.sys\u6587\u4ef6\u76840x224844 IOCTL handler\u529f\u80fd\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7f51\u7edc\u7cfb\u7edf\u6216\u4ea7\u54c1\u5728\u8fd0\u884c\u8fc7\u7a0b\u4e2d\u5b58\u5728\u914d\u7f6e\u7b49\u9519\u8bef\u3002\u672a\u6388\u6743\u7684\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u83b7\u53d6\u53d7\u5f71\u54cd\u7ec4\u4ef6\u654f\u611f\u4fe1\u606f\u3002",
  "discovererName": "unknown",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://support.symantec.com/content/unifiedweb/en_US/article.SYMSA1479.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-13246",
  "openTime": "2019-05-07",
  "patchDescription": "Symantec Endpoint Protection\u662f\u7f8e\u56fd\u8d5b\u95e8\u94c1\u514b\uff08Symantec\uff09\u516c\u53f8\u7684\u4e00\u5957\u9632\u75c5\u6bd2\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u53ef\u8de8\u7269\u7406\u548c\u865a\u62df\u7cfb\u7edf\u63d0\u4f9b\u5b89\u5168\u9632\u62a4\u529f\u80fd\u3002\r\n\r\nSymantec Endpoint Protection\uff08Small Business Edition\uff09\u4e2d\u7684ccSetx86.sys\u6587\u4ef6\u76840x224844 IOCTL handler\u529f\u80fd\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7f51\u7edc\u7cfb\u7edf\u6216\u4ea7\u54c1\u5728\u8fd0\u884c\u8fc7\u7a0b\u4e2d\u5b58\u5728\u914d\u7f6e\u7b49\u9519\u8bef\u3002\u672a\u6388\u6743\u7684\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u83b7\u53d6\u53d7\u5f71\u54cd\u7ec4\u4ef6\u654f\u611f\u4fe1\u606f\u3002 \u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Symantec Endpoint Protection\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Symantec Norton Security 22.15.1",
      "Symantec Norton Security 22.0.2",
      "Symantec Norton Security 22.15.2.22",
      "Symantec Norton Security 22.12.0.104",
      "Symantec Endpoint Protection Cloud Agent",
      "Symantec Endpoint Protection Cloud 22.9",
      "Symantec Endpoint Protection Cloud 22.15",
      "Symantec Endpoint Protection Small Business Edition",
      "Symantec Endpoint Protection 14.0",
      "Symantec Endpoint Protection 14 RU1",
      "Symantec Endpoint Protection 12.1.7484.7002",
      "Symantec Endpoint Protection 12.1 RU6 MP9",
      "Symantec Endpoint Protection 12.1 RU6 MP10",
      "Symantec Endpoint Protection 12.1 RU6"
    ]
  },
  "referenceLink": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0693",
  "serverity": "\u4f4e",
  "submitTime": "2019-04-25",
  "title": "Symantec Endpoint Protection\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

GHSA-6MPJ-9376-4G2W

Vulnerability from github – Published: 2022-05-24 16:44 – Updated: 2022-05-24 16:44

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-18366"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2019-04-25T20:29:00Z",
    "severity": "MODERATE"
  },
  "details": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory.",
  "id": "GHSA-6mpj-9376-4g2w",
  "modified": "2022-05-24T16:44:41Z",
  "published": "2022-05-24T16:44:41Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-18366"
    },
    {
      "type": "WEB",
      "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/107994"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-18366 (GCVE-0-2018-18366)

GSD-2018-18366

FKIE_CVE-2018-18366

CNVD-2019-13246

GHSA-6MPJ-9376-4G2W

Tags

Sightings

Nomenclature