CNNVD-202601-4740 Information

Jan 28, 2026 cve

CNNVD ID

CNNVD-202601-4740

CVE-2025-13919

CNNVD Published: 2026-01-28

Description (Chinese)

Broadcom Symantec Endpoint Protection Windows Agent是美国博通（Broadcom）公司的一个终端安全解决方案的客户端组件。 Broadcom Symantec Endpoint Protection Windows Agent存在安全漏洞，该漏洞源于COM劫持问题，可能导致攻击者通过劫持Windows注册表中的COM引用来建立持久性并逃避检测。

Description (English)

Broadcom Symantec Endpoint Production Windows Act is a client component of a terminal security solution for Broadcom. There is a security loophole in Broadcom Symantec Endpoint Production WindowsAgent, which stems from the problem of COM hijacking and may lead the attackers to build sustainability and avoid detection by abducting the COM quote from the Windows registration form.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

博通

Published

2026-01-28

Last Modified

2026-02-24

References

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36774 https://access.redhat.com/security/cve/cve-2025-13919

Patch

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36774

Share on: