2 matches found
CVE-2017-6327
CVE-2017-6327 affects Symantec Messaging Gateway prior to 10.6.3-267, with unauthenticated remote code execution through the web interface. Reports describe a pre-auth flaw (RestoreAction/web login handling) enabling arbitrary command execution with root privileges on affected appliances, exposed...
CVE-2019-12751
Symantec Messaging Gateway (SMG) before version 10.7.1 is affected by a privilege-escalation vulnerability. The issue allows an attacker to gain elevated privileges within the application, as described in vendor advisories and security feeds. Remediation provided by the vendor is to upgrade to SM...