Описание
An information disclosure flaw allows a malicious, authenticated, privileged web UI user to obtain a password for a remote SCP backup server that they might not otherwise be authorized to access. This affects SMG prior to 10.7.4.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 10.7.4 (исключая)
cpe:2.3:a:broadcom:symantec_messaging_gateway:*:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00297
Низкий
4.9 Medium
CVSS3
4 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
больше 3 лет назад
An information disclosure flaw allows a malicious, authenticated, privileged web UI user to obtain a password for a remote SCP backup server that they might not otherwise be authorized to access. This affects SMG prior to 10.7.4.
EPSS
Процентиль: 53%
0.00297
Низкий
4.9 Medium
CVSS3
4 Medium
CVSS2
Дефекты
NVD-CWE-noinfo