CyberSec.Space Logo
Back to CVE Browser

CVE-2016-2206

MEDIUM
5.7
CVSS Severity Score
EPSS Score0.0110%
EPSS Percentile20.95th
PublishedJul 12, 2016
Last ModifiedMay 6, 2026

Vulnerability Description

The management console in Symantec Workspace Streaming (SWS) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Workspace Virtualization (SWV) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 allows remote authenticated users to read arbitrary files by modifying the file-download configuration file.

Affected Platforms (CPE)

πŸ“¦
Symantec

Workspace Streaming

= 7.5.0
πŸ“¦
Symantec

Workspace Streaming

= 7.5.0
πŸ“¦
Symantec

Workspace Streaming

= 7.6.0
πŸ“¦
Symantec

Workspace Virtualization

= 7.5.0
πŸ“¦
Symantec

Workspace Virtualization

= 7.5.0
πŸ“¦
Symantec

Workspace Virtualization

= 7.6.0

References & Advisories

πŸ”— http://www.securityfocus.com/bid/89394
πŸ”— http://www.securitytracker.com/id/1036262
πŸ”— http://www.securitytracker.com/id/1036263
πŸ”— http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160707_00
πŸ”— http://www.securityfocus.com/bid/89394
πŸ”— http://www.securitytracker.com/id/1036262
πŸ”— http://www.securitytracker.com/id/1036263
πŸ”— http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160707_00

Related Vulnerabilities

CVE-2008-43899.3

Symantec AppStream 5.2.x and Symantec Workspace Streaming (SWS) 6.1.x before 6.1 SP4 do not properly perform authentication, which...

CVE-2014-16497.9

The server in Symantec Workspace Streaming (SWS) before 7.5.0.749 allows remote attackers to access files and functionality by sen...

CVE-2015-14846.9

Unquoted Windows search path vulnerability in the agent in Symantec Workspace Streaming (SWS) 6.1 before SP8 MP2 HF7 and 7.5 befor...

CVE-2016-22055.7

Directory traversal vulnerability in the file-download configuration file in the management console in Symantec Workspace Streamin...