CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-23615

A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 10.5 and before. A remote, anonymous attacker can exploit this vulnerability to achieve remote code execution as root.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.076

EPSS Ranking 91.3%

CVSS Severity

CVSS v3 Score 10.0

CVSS v2 Score 10.0

References

https://blog.exodusintel.com/2024/01/25/symantec-messaging-gateway-libdec2lha-so-stack-buffer-overflow-remote-code-execution/
https://blog.exodusintel.com/2024/01/25/symantec-messaging-gateway-libdec2lha-so-stack-buffer-overflow-remote-code-execution/

Products affected by CVE-2024-23615

Broadcom » Symantec Messaging Gateway » Version: N/A

cpe:2.3:a:broadcom:symantec_messaging_gateway:-
Broadcom » Symantec Messaging Gateway » Version: 10.5

cpe:2.3:a:broadcom:symantec_messaging_gateway:10.5
Broadcom » Symantec Messaging Gateway » Version: 9.5

cpe:2.3:a:broadcom:symantec_messaging_gateway:9.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-23615

Products

Pricing

Contact Us