Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec messaging gateway vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2016-2203
The management console on Symantec Messaging Gateway (SMG) Appliance devices prior to 10.6.1 allows local users to discover an encrypted AD password by leveraging certain read privileges.
Symantec Messaging Gateway 10.6.0
1 EDB exploit
7.3
CVSSv3
CVE-2019-18379
Symantec Messaging Gateway, before 10.7.3, may be susceptible to a server-side request forgery (SSRF) exploit, which is a type of issue that can let an attacker send crafted requests from the backend server of a vulnerable web application or access services available through the ...
Symantec Messaging Gateway
7.3
CVSSv3
CVE-2017-6324
The Symantec Messaging Gateway, when processing a specific email attachment, can allow a malformed or corrupted Word file with a potentially malicious macro through despite the administrator having the 'disarm' functionality enabled. This constitutes a 'bypass'...
Symantec Messaging Gateway
7.2
CVSSv3
CVE-2020-12594
A privilege escalation flaw allows a malicious, authenticated, privileged CLI user to escalate their privileges on the system and gain full control over the SMG appliance. This affects SMG before 10.7.4.
Broadcom Symantec Messaging Gateway
7.2
CVSSv3
CVE-2019-18377
Symantec Messaging Gateway, before 10.7.3, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an applicat...
Symantec Messaging Gateway
6.6
CVSSv3
CVE-2017-6325
The Symantec Messaging Gateway can encounter a file inclusion vulnerability, which is a type of vulnerability that is most commonly found to affect web applications that rely on a scripting run time. This issue is caused when an application builds a path to executable code using ...
Symantec Messaging Gateway
6.5
CVSSv3
CVE-2016-5312
Directory traversal vulnerability in the charting component in Symantec Messaging Gateway prior to 10.6.2 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the sn parameter to brightmail/servlet/com.ve.kavachart.servlet.ChartStream.
Symantec Messaging Gateway
1 EDB exploit
5.7
CVSSv3
CVE-2017-15532
before 10.6.4, Symantec Messaging Gateway may be susceptible to a path traversal attack (also known as directory traversal). These types of attacks aim to access files and directories that are stored outside the web root folder. By manipulating variables, it may be possible to ac...
Symantec Messaging Gateway
5.5
CVSSv3
CVE-2016-5309
The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows prior to 12.1.6 MP5; Symantec Endpoint Prot...
Broadcom Symantec Data Center Security Server -
Symantec Advanced Threat Protection -
Symantec Csapi
Symantec Email Security.cloud -
Symantec Endpoint Protection
Symantec Endpoint Protection Cloud -
Symantec Endpoint Protection For Small Business -
Symantec Endpoint Protection For Small Business
Symantec Mail Security For Domino
Symantec Mail Security For Domino 8.1.2
Symantec Mail Security For Domino 8.1.3
Symantec Mail Security For Microsoft Exchange
Symantec Mail Security For Microsoft Exchange 7.0
Symantec Mail Security For Microsoft Exchange 7.0.1
Symantec Mail Security For Microsoft Exchange 7.0.2
Symantec Mail Security For Microsoft Exchange 7.0.3
Symantec Mail Security For Microsoft Exchange 7.0.4
Symantec Mail Security For Microsoft Exchange 7.5
Symantec Mail Security For Microsoft Exchange 7.5.1
Symantec Mail Security For Microsoft Exchange 7.5.2
Symantec Mail Security For Microsoft Exchange 7.5.3
Symantec Mail Security For Microsoft Exchange 7.5.4
1 EDB exploit
5.5
CVSSv3
CVE-2016-5310
The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows prior to 12.1.6 MP5; Symantec Endpoint Prot...
Broadcom Symantec Data Center Security Server -
Symantec Advanced Threat Protection -
Symantec Csapi
Symantec Email Security.cloud -
Symantec Endpoint Protection
Symantec Endpoint Protection Cloud -
Symantec Endpoint Protection For Small Business -
Symantec Endpoint Protection For Small Business
Symantec Mail Security For Domino
Symantec Mail Security For Domino 8.1.2
Symantec Mail Security For Domino 8.1.3
Symantec Mail Security For Microsoft Exchange
Symantec Mail Security For Microsoft Exchange 7.0
Symantec Mail Security For Microsoft Exchange 7.0.1
Symantec Mail Security For Microsoft Exchange 7.0.2
Symantec Mail Security For Microsoft Exchange 7.0.3
Symantec Mail Security For Microsoft Exchange 7.0.4
Symantec Mail Security For Microsoft Exchange 7.5
Symantec Mail Security For Microsoft Exchange 7.5.1
Symantec Mail Security For Microsoft Exchange 7.5.2
Symantec Mail Security For Microsoft Exchange 7.5.3
Symantec Mail Security For Microsoft Exchange 7.5.4
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »