CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-0307

Multiple cross-site scripting (XSS) vulnerabilities in Symantec Messaging Gateway (SMG) before 10.0 allow remote attackers to inject arbitrary web script or HTML via (1) web content or (2) e-mail content.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.7%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/55138
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120827_00
https://exchange.xforce.ibmcloud.com/vulnerabilities/78031
http://www.securityfocus.com/bid/55138
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120827_00
https://exchange.xforce.ibmcloud.com/vulnerabilities/78031

Products affected by CVE-2012-0307

Symantec » Messaging Gateway » Version: 9.5

cpe:2.3:a:symantec:messaging_gateway:9.5
Symantec » Messaging Gateway » Version: 9.5.1

cpe:2.3:a:symantec:messaging_gateway:9.5.1
Symantec » Messaging Gateway » Version: 9.5.2

cpe:2.3:a:symantec:messaging_gateway:9.5.2
Symantec » Messaging Gateway » Version: 9.5.3

cpe:2.3:a:symantec:messaging_gateway:9.5.3
Symantec » Messaging Gateway » Version: 9.5.4

cpe:2.3:a:symantec:messaging_gateway:9.5.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-0307

Products

Pricing

Contact Us