Secure Mail Gateway Security Vulnerabilities

CVE-2018-6288

Cross-site Request Forgery leading to Administrative account takeover in Kaspersky Secure Mail Gateway version 1.1.

CVE-2018-6289

Configuration file injection leading to Code Execution as Root in Kaspersky Secure Mail Gateway version 1.1.

CVE-2018-6290

Local Privilege Escalation in Kaspersky Secure Mail Gateway version 1.1.

CVE-2018-6291

WebConsole Cross-Site Scripting in Kaspersky Secure Mail Gateway version 1.1.