vulnerability

Symantec Endpoint Protection Manager: CVE-2019-12759: Vulnerability in Symantec Endpoint Protection Manager

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Nov 15, 2019	Dec 6, 2019	May 7, 2026

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Nov 15, 2019

Added

Dec 6, 2019

Modified

May 7, 2026

Description

Symantec Endpoint Protection Manager (SEPM) and Symantec Mail Security for MS Exchange (SMSMSE), prior to versions 14.2 RU2 and 7.5.x respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.

Solution

symantec-endpoint-protection-manager-upgrade-latest

References

CVE-2019-12759
https://attackerkb.com/topics/CVE-2019-12759
https://support.symantec.com/us/en/article.SYMSA1488.html
https://euvd.enisa.europa.eu/vulnerability/EUVD-2019-4345
EUVD-EUVD-2019-4345

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report