A vulnerability was reported in Symantec Enterprise Vault
Versions prior to Enterprise Vault 9.0.4 and 10.0.1 are vulnerable.
Symantec Enterprise Vault (EV) for File System Archiving has an unquoted search path in the File Collector and File PlaceHolder services
This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system.
Execution of arbitrary code via local system
Root access via local system
The vendor recommends updating to latest software version