Broadcom Symantec_messaging_gateway
6 CVEs affecting Broadcom Symantec_messaging_gateway. Latest disclosed: 2024-01-26. Critical: 2, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-23615 | Critical | 10.0 | 2024-01-26 | A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 10.5 and before. A remote, anonymous attacker can exploit this vulnerability to a… |
CVE-2024-23614 | Critical | 10.0 | 2024-01-26 | A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 9.5 and before. A remote, anonymous attacker can exploit this vulnerability to ac… |
CVE-2014-0160 | High | 7.5 | 2014-04-07 | The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to ob… |
CVE-2020-12594 | High | 7.2 | 2020-12-10 | A privilege escalation flaw allows a malicious, authenticated, privileged CLI user to escalate their privileges on the system and gain full control over the SM… |
CVE-2021-30651 | Medium | 4.9 | 2022-06-24 | A malicious authenticated SMG administrator user can obtain passwords for external LDAP/Active Directory servers that they might not otherwise be authorized to… |
CVE-2020-12595 | Medium | 4.9 | 2020-12-10 | An information disclosure flaw allows a malicious, authenticated, privileged web UI user to obtain a password for a remote SCP backup server that they might no… |