Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
messaging gateway vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2018-12464
A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote malicious user to execute arbitrary SQL statements against the database. This can be exploited to create an administrative ac...
Microfocus Secure Messaging Gateway
1 EDB exploit
694
VMScore
CVE-2017-12215
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for the Cisco Email Security Appliance could allow an unauthenticated, remote malicious user to cause an affected device to run out of memory and stop scanning and forwarding email messages. When sys...
Cisco Asyncos 9.5
Cisco Asyncos 9.6
Cisco Asyncos 9.7
Cisco Asyncos 9.8
Cisco Asyncos 9.1
Cisco Asyncos 9.0
Cisco Asyncos 9.1.2
694
VMScore
CVE-2015-6291
Cisco AsyncOS prior to 8.5.7-043, 9.x prior to 9.1.1-023, and 9.5.x and 9.6.x prior to 9.6.0-046 on Email Security Appliance (ESA) devices mishandles malformed fields during body-contains, attachment-contains, every-attachment-contains, attachment-binary-contains, dictionary-matc...
Cisco Email Security Appliance 8.0 Base
Cisco Email Security Appliance 8.5 Base
Cisco Email Security Appliance 8.5.6-113
Cisco Email Security Appliance 9.1.0-032
Cisco Email Security Appliance 8.5.6-073
Cisco Email Security Appliance 9.0.0
Cisco Email Security Appliance 9.0.0-461
Cisco Email Security Appliance 8.5.6-052
Cisco Email Security Appliance 9.0.0-212
Cisco Email Security Appliance 8.5.7-042
Cisco Email Security Appliance 9.6.0-042
Cisco Email Security Appliance 9.0.5-000
Cisco Email Security Appliance 8.5.6-106
Cisco Email Security Appliance 8.5.6-074
Cisco Email Security Appliance 7.7.0-000
Cisco Email Security Appliance 7.7.1-000
685
VMScore
CVE-2017-6328
The Symantec Messaging Gateway prior to 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious exploit of a website where unauthorized commands are transmitted from a user t...
Symantec Message Gateway
1 EDB exploit
685
VMScore
CVE-2012-0308
Cross-site request forgery (CSRF) vulnerability in Symantec Messaging Gateway (SMG) prior to 10.0 allows remote malicious users to hijack the authentication of administrators.
Symantec Messaging Gateway
Symantec Messaging Gateway 9.5.2
Symantec Messaging Gateway 9.5
Symantec Messaging Gateway 10.0
Symantec Messaging Gateway 9.5.3
Symantec Messaging Gateway 9.5.1
1 EDB exploit
685
VMScore
CVE-2012-3580
Symantec Messaging Gateway (SMG) prior to 10.0 allows remote authenticated users to modify the web application by leveraging access to the management interface.
Symantec Messaging Gateway
Symantec Messaging Gateway 9.5.1
Symantec Messaging Gateway 9.5
Symantec Messaging Gateway 9.5.3
Symantec Messaging Gateway 9.5.2
676
VMScore
CVE-2008-6085
Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when configured to scan inside compressed archives, allows remote malicious users to execute arbitrary code via a crafted RPM compre...
F-secure F-secure Internet Security 2007
F-secure F-secure Internet Security 2006
F-secure F-secure Anti-virus For Workstations 7.10
F-secure F-secure Linux Security
F-secure F-secure Protection Service For Consumers 6.00
F-secure F-secure Protection Service For Consumers 5.00
F-secure F-secure Anti-virus Linux Server Security 5.30
F-secure F-secure Anti-virus 2007
F-secure F-secure Anti-virus 2006
F-secure F-secure Anti-virus Linux Client Security 5.52
F-secure F-secure Anti-virus Linux Client Security 5.30
F-secure F-secure Home Server Security 2009
F-secure F-secure Anti-virus For Windows Servers
F-secure F-secure Anti-virus For Microsoft Exchange 6.62
F-secure F-secure Internet Gatekeeper For Windows
F-secure F-secure Internet Gatekeeper For Linux
F-secure F-secure Anti-virus 7.02
F-secure F-secure Anti-virus 2009
F-secure F-secure Anti-virus Linux Client Security
F-secure F-secure Anti-virus Linux Client Security 5.53
F-secure F-secure Protection Service For Business
F-secure F-secure Protection Service For Business 3.00
668
VMScore
CVE-2019-18379
Symantec Messaging Gateway, before 10.7.3, may be susceptible to a server-side request forgery (SSRF) exploit, which is a type of issue that can let an attacker send crafted requests from the backend server of a vulnerable web application or access services available through the ...
Symantec Messaging Gateway
668
VMScore
CVE-2019-14379
SubTypeValidator.java in FasterXML jackson-databind prior to 2.9.9.2 mishandles default typing when ehcache is used (because of net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup), leading to remote code execution.
Fasterxml Jackson-databind
Debian Debian Linux 8.0
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Service Level Manager -
Netapp Active Iq Unified Manager
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Redhat Jboss Enterprise Application Platform 7.2
Redhat Jboss Enterprise Application Platform 7.3
Redhat Openshift Container Platform 4.1
Redhat Single Sign-on 7.3
Redhat Openshift Container Platform 3.11
Oracle Retail Xstore Point Of Service 15.0
Oracle Primavera Unifier 16.2
Oracle Banking Platform 2.4.0
Oracle Retail Xstore Point Of Service 7.1
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Banking Platform 2.4.1
Oracle Primavera Gateway 16.2
Oracle Primavera Gateway 15.2
1 Github repository
668
VMScore
CVE-2019-12751
Symantec Messaging Gateway, before 10.7.1, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an applicat...
Symantec Message Gateway
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »