CVE-2012-3580

EUVD-2012-3527
Symantec Messaging Gateway (SMG) before 10.0 allows remote authenticated users to modify the web application by leveraging access to the management interface.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.7 UNKNOWN
ADJACENT_NETWORK
LOW
AV:A/AC:L/Au:S/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 75%
Affected Products (NVD)
VendorProductVersion
symantecmessaging_gateway
𝑥
≤ 9.5.4
symantecmessaging_gateway
9.5
symantecmessaging_gateway
9.5.1
symantecmessaging_gateway
9.5.2
symantecmessaging_gateway
9.5.3
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/55141
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120827_00
https://exchange.xforce.ibmcloud.com/vulnerabilities/78032
http://www.securityfocus.com/bid/55141
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120827_00
https://exchange.xforce.ibmcloud.com/vulnerabilities/78032