Lucene search
SymantecCVE-2015-6548HistorySep 20, 2015 - 8:59 p.m.
CVE-2015-6548
2015-09-2020:59:10
CWE-89
symantec
web.nvd.nist.gov
26
cve-2015-6548
sql injection
php script
symantec web gateway
nvd
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
MULTIPLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:M/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.002
Percentile
53.3%
Multiple SQL injection vulnerabilities in a PHP script in the management console on Symantec Web Gateway (SWG) appliances with software before 5.2.2 DB 5.0.0.1277 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Affected configurations
Node
symantecweb_gatewayRange≤5.2.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| symantec | web_gateway | * | cpe:2.3:a:symantec:web_gateway:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2015-6548
2015-09-20 20:00:00
nvd
nvd
CVE-2015-6548
2015-09-20 20:59:10
prion
prion
Sql injection
2015-09-20 20:59:00
symantec
symantec
Symantec Web Gateway Security Management Console Multiple Issues
2015-09-16 08:00:00
nessus
nessus
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
MULTIPLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:M/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.002
Percentile
53.3%
Related for CVE-2015-6548