CVE-2025-13917
Unknown
Unknown - Not Provided
Elevation of Privilege in WSS Agent Before
Publication date: 2026-01-28
Last updated on: 2026-01-28
Assigner: Symantec Corporation
Description
Description
WSS Agent, prior to 9.8.5, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| symantec | wss_agent | to 9.8.5 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-269 | The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in WSS Agent versions prior to 9.8.5 is an Elevation of Privilege issue, where an attacker could exploit the software to gain higher access rights than normally permitted, potentially compromising protected resources.
How can this vulnerability impact me? :
The vulnerability can allow an attacker with limited privileges to escalate their access, leading to unauthorized control over sensitive data, system integrity, and availability, which could result in data breaches or system compromise.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70