CVE-2020-12595

Summary

An information disclosure flaw allows a malicious, authenticated, privileged web UI user to obtain a password for a remote SCP backup server that they might not otherwise be authorized to access. This affects SMG prior to 10.7.4.

Affected Software

VendorProductVersion RangeStatus
n/aSymantec Messaging Gateway (SMG)SMG prior to 10.7.4affected

Weaknesses

  • Information disclosure

ADP Enrichment

CVE Program Container

Additional References

References