CVE-2016-6591 Information

Description

A security bypass vulnerability exists in Symantec Norton App Lock 1.0.3.186 and earlier if application pinning is enabled which could let a local malicious user bypass security restrictions.

CVSS Vector

CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Reference

http://www.securityfocus.com/bid/94343 https://support.symantec.com/us/en/article.symsa1386.html

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

CHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

NONE

Base Severity

7.1