Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec web gateway vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2010-0115
SQL injection vulnerability in login.php in the GUI management console in Symantec Web Gateway 4.5 prior to 4.5.0.376 allows remote malicious users to execute arbitrary SQL commands via the USERNAME parameter.
Symantec Web Gateway 4.5.0.325
Symantec Web Gateway 4.5.0.326
Symantec Web Gateway 4.5.0.327
Symantec Web Gateway 4.5
668
VMScore
CVE-2005-0249
Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote malicious users to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header.
Symantec Client Security 1.0.1 Build 8.01.464
Symantec Client Security 1.0.1 Build 8.01.471
Symantec Client Security 1.1.1 Mr1 Build 8.1.1.314a
Symantec Client Security 1.1.1 Mr2 Build 8.1.1.319
Symantec Norton Antivirus 8.1.1.323
Symantec Norton Antivirus 8.1.1.329
Symantec Norton Antivirus 8.1.1 Build8.1.1.314a
Symantec Norton Antivirus 8.01.434
Symantec Web Security 3.01.59
Symantec Web Security 3.01.60
Symantec Web Security 3.01.61
Symantec Web Security 3.01.62
Symantec Client Security 1.0.1 Build 8.01.446
Symantec Client Security 1.0.1 Build 8.01.460
Symantec Client Security 1.1.1 Mr3 Build 8.1.1.323
Symantec Client Security 1.1.1 Mr5 Build 8.1.1.336
Symantec Gateway Security 2.0
Symantec Mail Security 4.1
Symantec Norton Antivirus 2.18 Build 83
Symantec Norton Antivirus 8.01.446
Symantec Norton Antivirus 8.01.460
Symantec Sav Filter Domino Nt Ports Build3.0.5
659
VMScore
CVE-2013-1617
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 allow remote authenticated administrators to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
656
VMScore
CVE-2014-7285
The management console on the Symantec Web Gateway (SWG) appliance prior to 5.2.2 allows remote authenticated users to execute arbitrary OS commands by injecting command strings into unspecified PHP scripts.
Symantec Web Gateway
1 EDB exploit
2 Github repositories
645
VMScore
CVE-2012-0298
The file-management scripts in the management GUI in Symantec Web Gateway 5.0.x prior to 5.0.3 allow remote malicious users to (1) read or (2) delete arbitrary files via unspecified vectors.
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.1
1 EDB exploit
641
VMScore
CVE-2013-4672
The management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 has an incorrect sudoers file, which allows local users to bypass intended access restrictions via a command.
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
578
VMScore
CVE-2013-5012
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway
570
VMScore
CVE-2021-46825
Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to an HTTP desync vulnerability. When a remote unauthenticated attacker and other web clients communicate through the proxy with the same web server, the attacker can send crafted HTTP requests and cause the proxy...
Broadcom Advanced Secure Gateway 6.7
Broadcom Proxysg 6.7
Broadcom Proxysg 7.3
Broadcom Advanced Secure Gateway 7.3
534
VMScore
CVE-2017-6325
The Symantec Messaging Gateway can encounter a file inclusion vulnerability, which is a type of vulnerability that is most commonly found to affect web applications that rely on a scripting run time. This issue is caused when an application builds a path to executable code using ...
Symantec Messaging Gateway
534
VMScore
CVE-2013-4671
Cross-site request forgery (CSRF) vulnerability in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway
Symantec Web Gateway 5.0
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »