Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSymantecCVELIST:CVE-2017-6325
HistoryJun 26, 2017 - 9:00 p.m.

CVE-2017-6325

2017-06-2621:00:00
symantec
www.cve.org
2

8.2 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.1%

JSON

The Symantec Messaging Gateway can encounter a file inclusion vulnerability, which is a type of vulnerability that is most commonly found to affect web applications that rely on a scripting run time. This issue is caused when an application builds a path to executable code using an attacker-controlled variable in a way that allows the attacker to control which file is executed at run time. This file inclusion vulnerability subverts how an application loads code for execution. Successful exploitation of a file inclusion vulnerability will result in remote code execution on the web server that runs the affected web application.

CNA Affected

[
  {
    "product": "Messaging Gateway",
    "vendor": "Symantec Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "All versions prior to version 10.6.3"
      }
    ]
  }
]

Related

cve 1
nvd 1
prion 1
nessus 1
symantec 1
openvas 1
cve
cve
CVE-2017-6325
2017-06-26 21:29:00
nvd
nvd
CVE-2017-6325
2017-06-26 21:29:00
prion
prion
Security feature bypass
2017-06-26 21:29:00
nessus
nessus
Symantec Messaging Gateway 10.x < 10.6.3-266 Multiple Vulnerabilities (SYM17-004)
2017-06-30 00:00:00
symantec
symantec
Symantec Messaging Gateway Multiple Vulnerabilities
2017-06-21 08:00:00
openvas
openvas
Symantec Messaging Gateway <= 10.6.3 Multiple Vulnerabilities
2017-06-12 00:00:00

8.2 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.1%

JSON
Related for CVELIST:CVE-2017-6325
cve1nvd1prion1nessus1symantec1openvas1