Skip to main content

Content Analysis

6 CVEs product

Monthly

CVE-2023-23955 HIGH This Week

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Server-Side Request Forgery vulnerability. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SSRF Advanced Secure Gateway Content Analysis
NVD
CVSS 3.1
8.1
EPSS
0.5%
CVE-2023-23954 MEDIUM This Month

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Stored Cross-Site Scripting vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Advanced Secure Gateway Content Analysis
NVD
CVSS 3.1
5.4
EPSS
0.3%
CVE-2023-23953 HIGH This Week

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to an Elevation of Privilege vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Advanced Secure Gateway Content Analysis
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-23952 CRITICAL Act Now

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Command Injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Advanced Secure Gateway Content Analysis
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2016-9092 HIGH This Week

The Symantec Content Analysis (CA) 1.3, 2.x prior to 2.2.1.1, and Mail Threat Defense (MTD) 1.1 management consoles are susceptible to a cross-site request forging (CSRF) vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Content Analysis Mail Threat Defense
NVD
CVSS 3.0
8.8
EPSS
0.2%
CVE-2015-3364 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Content Analysis module before 6.x-1.7 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, which are not. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS Content Analysis
NVD
CVSS 2.0
4.3
EPSS
0.3%
EPSS 0% CVSS 8.1
HIGH This Week

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Server-Side Request Forgery vulnerability. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SSRF Advanced Secure Gateway Content Analysis
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Stored Cross-Site Scripting vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Advanced Secure Gateway Content Analysis
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to an Elevation of Privilege vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Advanced Secure Gateway Content Analysis
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Command Injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Advanced Secure Gateway Content Analysis
NVD
EPSS 0% CVSS 8.8
HIGH This Week

The Symantec Content Analysis (CA) 1.3, 2.x prior to 2.2.1.1, and Mail Threat Defense (MTD) 1.1 management consoles are susceptible to a cross-site request forging (CSRF) vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Content Analysis Mail Threat Defense
NVD
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Content Analysis module before 6.x-1.7 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, which are not. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS Content Analysis
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy