Описание
Symantec Messaging Gateway, prior to 10.7.3, may be susceptible to a server-side request forgery (SSRF) exploit, which is a type of issue that can let an attacker send crafted requests from the backend server of a vulnerable web application or access services available through the loopback interface.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 10.7.3 (исключая)
cpe:2.3:a:symantec:messaging_gateway:*:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00932
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-918
Связанные уязвимости
github
больше 3 лет назад
Symantec Messaging Gateway, prior to 10.7.3, may be susceptible to a server-side request forgery (SSRF) exploit, which is a type of issue that can let an attacker send crafted requests from the backend server of a vulnerable web application or access services available through the loopback interface.
EPSS
Процентиль: 76%
0.00932
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-918