Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gateway vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2012-0308
Cross-site request forgery (CSRF) vulnerability in Symantec Messaging Gateway (SMG) prior to 10.0 allows remote malicious users to hijack the authentication of administrators.
Symantec Messaging Gateway 9.5.2
Symantec Messaging Gateway
Symantec Messaging Gateway 10.0
Symantec Messaging Gateway 9.5.1
Symantec Messaging Gateway 9.5.3
Symantec Messaging Gateway 9.5
1 EDB exploit
5
CVSSv2
CVE-2019-0338
During an OData V2/V4 request in SAP Gateway, versions 750, 751, 752, 753, the HTTP Header attributes cache-control and pragma were not properly set, allowing an malicious user to access restricted information, resulting in Information Disclosure.
Sap Gateway 751
Sap Gateway 752
Sap Gateway 753
Sap Gateway 750
4.3
CVSSv2
CVE-2014-1648
Cross-site scripting (XSS) vulnerability in brightmail/setting/compliance/DlpConnectFlow$view.flo in the management console in Symantec Messaging Gateway 10.x prior to 10.5.2 allows remote malicious users to inject arbitrary web script or HTML via the displayTab parameter.
Symantec Messaging Gateway 10.0.1
Symantec Messaging Gateway 10.5.1
Symantec Messaging Gateway 10.0.2
Symantec Messaging Gateway 10.0
Symantec Messaging Gateway 10.0.3
Symantec Messaging Gateway 10.5.0
6.4
CVSSv2
CVE-2016-3118
CRLF injection vulnerability in CA API Gateway (formerly Layer7 API Gateway) 7.1 prior to 7.1.04, 8.0 up to and including 8.3 prior to 8.3.01, and 8.4 prior to 8.4.01 allows remote malicious users to have an unspecified impact via unknown vectors.
Broadcom Api Gateway 8.2
Broadcom Api Gateway 8.3
Broadcom Api Gateway 8.1
Broadcom Api Gateway 8.4
Broadcom Api Gateway 7.1
Broadcom Api Gateway 8.0
7.7
CVSSv2
CVE-2012-3580
Symantec Messaging Gateway (SMG) prior to 10.0 allows remote authenticated users to modify the web application by leveraging access to the management interface.
Symantec Messaging Gateway 9.5.2
Symantec Messaging Gateway
Symantec Messaging Gateway 9.5.1
Symantec Messaging Gateway 9.5.3
Symantec Messaging Gateway 9.5
3.3
CVSSv2
CVE-2012-3581
Symantec Messaging Gateway (SMG) prior to 10.0 allows remote malicious users to obtain potentially sensitive information about component versions via unspecified vectors.
Symantec Messaging Gateway 9.5.2
Symantec Messaging Gateway
Symantec Messaging Gateway 9.5.1
Symantec Messaging Gateway 9.5.3
Symantec Messaging Gateway 9.5
4.3
CVSSv2
CVE-2012-0307
Multiple cross-site scripting (XSS) vulnerabilities in Symantec Messaging Gateway (SMG) prior to 10.0 allow remote malicious users to inject arbitrary web script or HTML via (1) web content or (2) e-mail content.
Symantec Messaging Gateway 9.5.2
Symantec Messaging Gateway
Symantec Messaging Gateway 9.5.1
Symantec Messaging Gateway 9.5.3
Symantec Messaging Gateway 9.5
7.9
CVSSv2
CVE-2012-3579
Symantec Messaging Gateway (SMG) prior to 10.0 has a default password for an unspecified account, which makes it easier for remote malicious users to obtain privileged access via an SSH session.
Symantec Messaging Gateway 9.5.2
Symantec Messaging Gateway
Symantec Messaging Gateway 9.5.1
Symantec Messaging Gateway 9.5.3
Symantec Messaging Gateway 9.5
1 EDB exploit
7.1
CVSSv2
CVE-2012-3039
Moxa OnCell Gateway G3111, G3151, G3211, and G3251 devices with firmware prior to 1.4 do not use a sufficient source of entropy for SSH and SSL keys, which makes it easier for remote malicious users to obtain access by leveraging knowledge of a key from a product installation els...
Moxa Oncell Gateway Firmware
Moxa Oncell Gateway G3111 -
Moxa Oncell Gateway G3151 -
Moxa Oncell Gateway G3211 -
Moxa Oncell Gateway G3251 -
4.3
CVSSv2
CVE-2016-3969
Cross-site scripting (XSS) vulnerability in McAfee Email Gateway (MEG) 7.6.x prior to 7.6.404, when File Filtering is enabled with the action set to ESERVICES:REPLACE, allows remote malicious users to inject arbitrary web script or HTML via an attachment in a blocked email.
Mcafee Email Gateway 7.6.1
Mcafee Email Gateway 7.6.4
Mcafee Email Gateway 7.6
Mcafee Email Gateway 7.6.3
Mcafee Email Gateway 7.6.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »