CVE-2026-3991 Symantec — Exploit & Vulnerability Details HIGH

CVE-2026-3991

HIGH CVSS 3.1: 7.8 EPSS 0.01%

Parameter	Value
CVSS	7.8 (HIGH)
Affected Versions	before 25.1
Type	CWE-829 (Inclusion of Functionality from Untrusted Source)
Vendor	Symantec
Public PoC	No

Symantec Data Loss Prevention Windows Endpoint, prior to 25.1 MP1, 16.1 MP2, 16.0 RU2 HF9, 16.0 RU1 MP1 HF12, and 16.0 MP2 HF15, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.

Attack Parameters

Attack Vector

Local

Requires local access

Attack Complexity

Low

Easy to exploit

Privileges Required

Low

Basic privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

High

Complete data leak

Integrity

High

Complete data modification

Availability

High

Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-829 Inclusion of Functionality from Untrusted Source

References 1

https://support.broadcom.com/web/ecx/support-content-notification/-/external/co…

secure@symantec.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2025-13919

Symantec

4.4

CVE-2025-13918

Symantec

6.7

CVE-2025-0893

Symantec

7.8

Menu

CVE-2026-3991

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2025-13919

CVE-2025-13918

CVE-2025-0893

CVE Details

Editor's Choice

Menu

CVE-2026-3991

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2025-13919

CVE-2025-13918

CVE-2025-0893

CVE Details

Editor's Choice

Stay informed on cybersecurity