Messaging gateway

This hub aggregates every CVE we track for Messaging gateway, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Messaging gateway.

• CVE-2024-23615Symantec Messaging Gateway Buffer Overflow10.0Jan 25, 2024
• CVE-2024-23614Symantec Messaging Gateway Buffer Overflow10.0Jan 25, 2024
• CVE-2022-25629An authenticated user who has the privilege to add/edit annotations on the Content tab, can craft a malicious annotation that can be executed on the annotations page (Annotation Text Column).5.4Dec 9, 2022
• CVE-2022-25630An authenticated user can embed malicious content with XSS into the admin group policy page.5.4Dec 9, 2022
• CVE-2012-6277Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16, as used in Symantec Mail Security for Microsoft Exchange before 6.5.8, Symantec Mail Security for Domino before 8.1.1, Sy...7.8Feb 21, 2020
• CVE-2019-18379Symantec Messaging Gateway, prior to 10.7.3, may be susceptible to a server-side request forgery (SSRF) exploit, which is a type of issue that can let an attacker send crafted requests from the bac...7.3Dec 11, 2019
• CVE-2019-18378Symantec Messaging Gateway, prior to 10.7.3, may be susceptible to a cross-site scripting (XSS) exploit, which is a type of issue that can enable attackers to inject client-side scripts into web pa...4.8Dec 11, 2019
• CVE-2019-18377Symantec Messaging Gateway, prior to 10.7.3, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software applicat...7.2Dec 11, 2019
• CVE-2019-9699Symantec Messaging Gateway (prior to 10.7.0), may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.4.5Oct 24, 2019
• CVE-2018-12242The Symantec Messaging Gateway product prior to 10.6.6 may be susceptible to an authentication bypass exploit, which is a type of issue that can allow attackers to potentially circumvent security m...9.8Sep 19, 2018
• CVE-2018-12243The Symantec Messaging Gateway product prior to 10.6.6 may be susceptible to a XML external entity (XXE) exploit, which is a type of issue where XML input containing a reference to an external enti...8.8Sep 19, 2018
• CVE-2017-15532Prior to 10.6.4, Symantec Messaging Gateway may be susceptible to a path traversal attack (also known as directory traversal). These types of attacks aim to access files and directories that are st...5.7Dec 20, 2017
• CVE-2017-6327The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of remote code execution, which describes a situation whereby an individual may obtain the ability to execute commands remote...KEV8.8Aug 11, 2017
• CVE-2017-6328The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicio...8.8Aug 11, 2017
• CVE-2017-6325The Symantec Messaging Gateway can encounter a file inclusion vulnerability, which is a type of vulnerability that is most commonly found to affect web applications that rely on a scripting run tim...6.6Jun 26, 2017