Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSymantecCVELIST:CVE-2018-12243
HistorySep 12, 2018 - 12:00 a.m.

CVE-2018-12243

2018-09-1200:00:00
symantec
www.cve.org

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.8%

JSON

The Symantec Messaging Gateway product prior to 10.6.6 may be susceptible to a XML external entity (XXE) exploit, which is a type of issue where XML input containing a reference to an external entity is processed by a weakly configured XML parser. The attack uses file URI schemes or relative paths in the system identifier to access files that should not normally be accessible.

CNA Affected

[
  {
    "product": "Symantec Messaging Gateway",
    "vendor": "Symantec Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Prior to 10.6.6"
      }
    ]
  }
]

Related

prion 1
cve 1
nvd 1
symantec 1
nessus 1
prion
prion
Xxe
2018-09-19 15:29:00
cve
cve
CVE-2018-12243
2018-09-19 15:29:19
nvd
nvd
CVE-2018-12243
2018-09-19 15:29:19
symantec
symantec
Symantec Messaging Gateway Multiple Issues
2018-09-12 14:39:41
nessus
nessus
Symantec Messaging Gateway 10.x < 10.6.6 Multiple Vulnerabilities (SYMSA1461)
2018-09-20 00:00:00

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.8%

JSON
Related for CVELIST:CVE-2018-12243
prion1cve1nvd1symantec1nessus1