Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web gateway vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2020-12713
An issue exists in CipherMail Community Gateway and Professional/Enterprise Gateway 1.0.1 up to and including 4.7.1-0 and CipherMail Webmail Messenger 1.1.1 up to and including 3.1.1-0. Attackers with administrative access to the web interface have multiple options to escalate th...
Ciphermail Gateway
Ciphermail Webmail Messenger
9
CVSSv2
CVE-2020-10795
Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to authenticated remote code execution via the backup functionality of the web frontend. This can be combined with CVE-2020-10794 for remote root access.
Gira Tks-ip-gateway Firmware 4.0.7.7
9
CVSSv2
CVE-2020-9474
The S. Siedle & Soehne SG 150-0 Smart Gateway prior to 1.2.4 allows remote code execution via the backup functionality in the web frontend. By using an exploit chain, an attacker with access to the network can get root access on the gateway.
Siedle Sg 150-0 Firmware
9
CVSSv2
CVE-2019-9507
The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to command injection because the application incorrectly neutralizes code syntax before executing. Since all commands within the web application are executed as root, this could allow a remote attacke...
Vertiv Avocent Umg-4000 Firmware 4.2.1.19
9
CVSSv2
CVE-2018-6677
Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to gain elevated privileges via unspecified vectors.
Mcafee Mcafee Web Gateway 7.8.1.0
9
CVSSv2
CVE-2018-12465
An OS command injection vulnerability in the web administration component of Micro Focus Secure Messaging Gateway (SMG) allows a remote attacker authenticated as a privileged user to execute arbitrary OS commands on the SMG server. This can be exploited in conjunction with CVE-20...
Microfocus Secure Messaging Gateway
1 EDB exploit
9
CVSSv2
CVE-2016-5313
Symantec Web Gateway (SWG) prior to 5.2.5 allows remote authenticated users to execute arbitrary OS commands.
Symantec Web Gateway
9
CVSSv2
CVE-2016-9091
Blue Coat Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.4 and Content Analysis System (CAS) 1.3 prior to 1.3.7.4 are susceptible to an OS command injection vulnerability. An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges...
Bluecoat Advanced Secure Gateway
Bluecoat Content Analysis System Software
2 EDB exploits
1 Github repository
9
CVSSv2
CVE-2016-9554
The Sophos Web Appliance Remote / Secure Web Gateway server (version 4.2.1.3) is vulnerable to a Remote Command Injection vulnerability in its web administrative interface. These vulnerabilities occur in MgrDiagnosticTools.php (/controllers/MgrDiagnosticTools.php), in the compone...
Sophos Web Appliance 4.2.1.3
1 EDB exploit
9
CVSSv2
CVE-2016-2209
Buffer overflow in Dec2SS.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x up to and including 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) prior to 12.1 RU6 MP5; Symantec E...
Symantec Mail Security For Microsoft Exchange 6.5.8
Symantec Mail Security For Microsoft Exchange
Symantec Norton Power Eraser
Symantec Protection Engine 7.8.0
Symantec Protection Engine
Symantec Endpoint Protection 12.1.6
Symantec Message Gateway
Symantec Norton 360
Symantec Norton Antivirus
Symantec Norton Internet Security
Symantec Norton Security With Backup
Symantec Norton Security
Symantec Ngc
Symantec Message Gateway For Service Providers 10.5
Symantec Message Gateway For Service Providers 10.6
Symantec Norton Bootable Removal Tool
Symantec Mail Security For Domino
Symantec Data Center Security Server 6.0
Symantec Data Center Security Server 6.5
Symantec Data Center Security Server 6.6
Symantec Norton Security
Symantec Advanced Threat Protection
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »