VIR Vulnerability Intelligence Relay

CVE-2012-4350

high
Published 2012-12-18 · Modified 2026-04-29
CVSS v3
CVSS v2
7.2
VIR risk
7.2

Description

Multiple unquoted Windows search path vulnerabilities in the (1) Manager and (2) Agent components in Symantec Enterprise Security Manager (ESM) before 11.0 allow local users to gain privileges via unspecified vectors.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Application impact
VendorProductVersionsFixed
symantecenterprise_security_manager{"endIncluding":"10.0"}
symantecenterprise_security_manager6.0
symantecenterprise_security_manager6.5
symantecenterprise_security_manager6.5.0
symantecenterprise_security_manager6.5.1
symantecenterprise_security_manager6.5.2
symantecenterprise_security_manager6.5.3
symantecenterprise_security_manager9.0
symantecenterprise_security_manager9.0.1

References

Verify integrity in audit chain (admin only). AS-IS.