Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec messaging gateway vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2019-18378
Symantec Messaging Gateway, before 10.7.3, may be susceptible to a cross-site scripting (XSS) exploit, which is a type of issue that can enable malicious users to inject client-side scripts into web pages viewed by other users. A cross-site scripting vulnerability may be used by ...
Symantec Messaging Gateway
7.3
CVSSv3
CVE-2019-18379
Symantec Messaging Gateway, before 10.7.3, may be susceptible to a server-side request forgery (SSRF) exploit, which is a type of issue that can let an attacker send crafted requests from the backend server of a vulnerable web application or access services available through the ...
Symantec Messaging Gateway
4.5
CVSSv3
CVE-2019-9699
Symantec Messaging Gateway (before 10.7.0), may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.
Symantec Messaging Gateway
9.8
CVSSv3
CVE-2019-12751
Symantec Messaging Gateway, before 10.7.1, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an applicat...
Symantec Message Gateway
9.8
CVSSv3
CVE-2018-12242
The Symantec Messaging Gateway product before 10.6.6 may be susceptible to an authentication bypass exploit, which is a type of issue that can allow malicious users to potentially circumvent security mechanisms currently in place and gain access to the system or network.
Symantec Messaging Gateway
8.8
CVSSv3
CVE-2018-12243
The Symantec Messaging Gateway product before 10.6.6 may be susceptible to a XML external entity (XXE) exploit, which is a type of issue where XML input containing a reference to an external entity is processed by a weakly configured XML parser. The attack uses file URI schemes o...
Symantec Messaging Gateway
5.7
CVSSv3
CVE-2017-15532
before 10.6.4, Symantec Messaging Gateway may be susceptible to a path traversal attack (also known as directory traversal). These types of attacks aim to access files and directories that are stored outside the web root folder. By manipulating variables, it may be possible to ac...
Symantec Messaging Gateway
8.8
CVSSv3
CVE-2017-6327
The Symantec Messaging Gateway prior to 10.6.3-267 can encounter an issue of remote code execution, which describes a situation whereby an individual may obtain the ability to execute commands remotely on a target machine or in a target process. In this type of occurrence, after ...
Symantec Message Gateway
1 EDB exploit
8.8
CVSSv3
CVE-2017-6328
The Symantec Messaging Gateway prior to 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious exploit of a website where unauthorized commands are transmitted from a user t...
Symantec Message Gateway
1 EDB exploit
7.3
CVSSv3
CVE-2017-6324
The Symantec Messaging Gateway, when processing a specific email attachment, can allow a malformed or corrupted Word file with a potentially malicious macro through despite the administrator having the 'disarm' functionality enabled. This constitutes a 'bypass'...
Symantec Messaging Gateway
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »