Vulnerabilities > Kaspersky > Secure Mail Gateway

DATE CVE VULNERABILITY TITLE RISK
2018-02-06 CVE-2018-6291 Cross-site Scripting vulnerability in Kaspersky Secure Mail Gateway 1.1
WebConsole Cross-Site Scripting in Kaspersky Secure Mail Gateway version 1.1.
network
kaspersky CWE-79
4.3
4.3
2018-02-06 CVE-2018-6290 Unspecified vulnerability in Kaspersky Secure Mail Gateway 1.1
Local Privilege Escalation in Kaspersky Secure Mail Gateway version 1.1.
local
low complexity
kaspersky
7.2
7.2
2018-02-06 CVE-2018-6289 Injection vulnerability in Kaspersky Secure Mail Gateway 1.1
Configuration file injection leading to Code Execution as Root in Kaspersky Secure Mail Gateway version 1.1.
network
low complexity
kaspersky CWE-74
critical
 10.0
10
2018-02-06 CVE-2018-6288 Cross-Site Request Forgery (CSRF) vulnerability in Kaspersky Secure Mail Gateway 1.1
Cross-site Request Forgery leading to Administrative account takeover in Kaspersky Secure Mail Gateway version 1.1.
network
kaspersky CWE-352
6.8
6.8