CVE-2014-1650

2014-06-1819:00:00

symantec

www.cve.org

AI Score

9.5

Confidence

High

EPSS

0.005

Percentile

76.0%

JSON

SQL injection vulnerability in user.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

References

www.securityfocus.com/bid/67753

www.securitytracker.com/id/1030443

www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit%20y_advisory&pvid=security_advisory&year=&suid=20140616_00

www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2014&suid=20140616_00