CVE-2025-8660

Published: Aug 11, 2025Modified: Sep 16, 2025

5.6

Vector

CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Show more

CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: secure@symantec.com (Secondary)

Description

Privilege escalation occurs when a user gets access to more resources or functionality than they are normally allowed.

Affected (1)

Products: Broadcom: Symantec Pgp Encryption

1 product

Symantec Pgp Encryption

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Broadcom Symantec Pgp Encryption	Version 11.0.1

Related CWEs

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (1)

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36021

Source: secure@symantec.com

Permissions Required

Timeline

No history available yet.