Skip to main content

Secure Messaging Gateway

3 CVEs product

Monthly

CVE-2020-11852 HIGH This Week

DKIM key management page vulnerability on Micro Focus Secure Messaging Gateway (SMG). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Secure Messaging Gateway
NVD
CVSS 3.1
8.8
EPSS
1.4%
CVE-2018-12465 HIGH POC THREAT Act Now

An OS command injection vulnerability in the web administration component of Micro Focus Secure Messaging Gateway (SMG) allows a remote attacker authenticated as a privileged user to execute. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Secure Messaging Gateway
NVD Exploit-DB
CVSS 3.0
7.2
EPSS
79.0%
CVE-2018-12464 CRITICAL POC THREAT Emergency

A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote attacker to execute arbitrary SQL statements. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi RCE Secure Messaging Gateway
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
80.5%
EPSS 1% CVSS 8.8
HIGH This Week

DKIM key management page vulnerability on Micro Focus Secure Messaging Gateway (SMG). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Secure Messaging Gateway
NVD
EPSS 79% CVSS 7.2
HIGH POC THREAT Act Now

An OS command injection vulnerability in the web administration component of Micro Focus Secure Messaging Gateway (SMG) allows a remote attacker authenticated as a privileged user to execute. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Secure Messaging Gateway
NVD Exploit-DB
EPSS 81% CVSS 9.8
CRITICAL POC THREAT Emergency

A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote attacker to execute arbitrary SQL statements. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi RCE Secure Messaging Gateway
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy