The kernel component in Symantec Anti-Virus Engine (AVE) 20151.1 before 20151.1.1.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation and system. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 52.7%.
RCE
Denial Of Service
Anti Virus Engine
NVD
Exploit-DB
CVSS 3.0
9.1
EPSS
52.7%
Threat
4.9