nasbench/CVE-2020-12593

CVE-2020-12593 POC

CVE-2020-12593

CVE-2020-12593 POC

Symantec EDR on-prem version prior to "4.5" is prone to an information disclosure vulnerability via the following URL :

https://@IP_EDR/atpapi/v2/policies/blacklist<

Reference

• https://support.broadcom.com/security-advisory/content/security-advisories/Symantec-Endpoint-Detection-Response-Security-Update/SYMSA16562