CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2012-2953

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1490%
EPSS Percentile4.24th
Published2012年7月23日
Last Modified2026年4月29日

Vulnerability Description

The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary commands via crafted input to application scripts.

Affected Platforms (CPE)

📦
Symantec

Web Gateway

= 5.0
📦
Symantec

Web Gateway

= 5.0.1
📦
Symantec

Web Gateway

= 5.0.2
📦
Symantec

Web Gateway

= 5.0.3

References & Advisories

🔗 http://www.kb.cert.org/vuls/id/108471
🔗 http://www.securityfocus.com/bid/54426
🔗 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120720_00
🔗 http://www.kb.cert.org/vuls/id/108471
🔗 http://www.securityfocus.com/bid/54426
🔗 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120720_00

相關漏洞威脅

CVE-2018-1246410.0

A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows a...

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...

CVE-2018-666710.0

Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 allows remo...

CVE-2010-473310.0

WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom N...