Vulnerability in Broadcom Symantec It Management Suite
CVE-2026-15379
The Altiris WMI provider exposes a class (AltirisAgent_Stream) that allows any local standard user to read the contents of any file accessible to the SYSTEM account, bypassing filesystem ACLs. No admin privileges required. The provider rev…
Affected products
- Broadcom Symantec It Management Suite — versions 8.8, 8.8.1
References
- secure@symantec.com (vendor-advisory)