Elevation of Privileges in Symantec Endpoint Protection Windows Client

6.7 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Description

Symantec Endpoint Protection, prior to 14.3 RU10 Patch 1, RU9 Patch 2, and RU8 Patch 3, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.

Basic Information

ID CVE-2025-13918

Source symantec

Published Jan 28, 2026 at 16:35

Affected Product

Vendor Broadcom

Product Symantec Endpoint Protection Windows Client

Version 14.3.12154.10000

Affected Versions Broadcom Symantec Endpoint Protection Windows Client 14.3.12154.10000

CWE Classification

CWE-269

References

support.broadcom.com /web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36774

{
    "lastseen": "",
    "description": "Symantec Endpoint Protection, prior to 14.3 RU10 Patch 1, RU9 Patch 2, and RU8 Patch 3, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.",
    "published": "2026-01-28T16:35:43.684Z",
    "modified": "2026-01-28T16:35:43.684Z",
    "type": "cve",
    "title": "Elevation of Privileges in Symantec Endpoint Protection Windows Client",
    "source": "symantec",
    "references": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36774",
    "id": "CVE-2025-13918",
    "bulletinFamily": "",
    "cwe": [
        "CWE-269"
    ],
    "cvelist": null,
    "sourceData": "Broadcom Symantec Endpoint Protection Windows Client 14.3.12154.10000",
    "sourceHref": "",
    "cvss": {
        "score": 6.7,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Symantec Endpoint Protection Windows Client",
    "version": "14.3.12154.10000",
    "vendor": "Broadcom",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Elevation of Privileges in Symantec Endpoint Protection Windows Client_CVE-2025-13918