10.7.4

CVSS 4.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

broadcom

NVD

Published: 2022-06-24

Updated: 2023-08-08

Summary

A malicious authenticated SMG administrator user can obtain passwords for external LDAP/Active Directory servers that they might not otherwise be authorized to access.

Vulnerable Configurations

Part	Description	Count
Application	Broadcom Broadcom Symantec Messaging Gateway 10.7 Broadcom Symantec Messaging Gateway 10.7.4	2

References

https://support.broadcom.com/external/content/SecurityAdvisories/0/20652