Elevation of Privileges in Web Security Services (WSS) Agent

7 / 10

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

WSS Agent, prior to 9.8.5, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.

Basic Information

ID CVE-2025-13917

Source symantec

Published Jan 28, 2026 at 16:29

Affected Product

Vendor Broadcom

Product Symantec Web Security Services Agent

Version 9.8.4

Affected Versions Broadcom Symantec Web Security Services Agent 9.8.4

CWE Classification

CWE-269

References

support.broadcom.com /web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36778

{
    "lastseen": "",
    "description": "WSS Agent, prior to 9.8.5, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.",
    "published": "2026-01-28T16:29:59.092Z",
    "modified": "2026-01-28T16:29:59.092Z",
    "type": "cve",
    "title": "Elevation of Privileges in Web Security Services (WSS) Agent",
    "source": "symantec",
    "references": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36778",
    "id": "CVE-2025-13917",
    "bulletinFamily": "",
    "cwe": [
        "CWE-269"
    ],
    "cvelist": null,
    "sourceData": "Broadcom Symantec Web Security Services Agent 9.8.4",
    "sourceHref": "",
    "cvss": {
        "score": 7,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Symantec Web Security Services Agent",
    "version": "9.8.4",
    "vendor": "Broadcom",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Elevation of Privileges in Web Security Services (WSS) Agent_CVE-2025-13917