Vulnerability Description
Symantec Messaging Gateway (SMG) before 10.0 allows remote authenticated users to modify the web application by leveraging access to the management interface.
CVSS Score
7.7
HIGH
AV:A/AC:L/Au:S/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Messaging Gateway | <= 9.5.4 |
References
- http://www.securityfocus.com/bid/55141
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78032
- http://www.securityfocus.com/bid/55141
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78032
FAQ
What is CVE-2012-3580?
CVE-2012-3580 is a vulnerability with a CVSS score of 7.7 (HIGH). Symantec Messaging Gateway (SMG) before 10.0 allows remote authenticated users to modify the web application by leveraging access to the management interface.
How severe is CVE-2012-3580?
CVE-2012-3580 has been rated HIGH with a CVSS base score of 7.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-3580?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Messaging Gateway.