Vulnerabilities > Microfocus > Secure Messaging Gateway

DATE CVE VULNERABILITY TITLE RISK
2020-08-07 CVE-2020-11852 OS Command Injection vulnerability in Microfocus Secure Messaging Gateway 471
DKIM key management page vulnerability on Micro Focus Secure Messaging Gateway (SMG).
network
low complexity
microfocus CWE-78
8.8
2018-06-29 CVE-2018-12465 OS Command Injection vulnerability in Microfocus Secure Messaging Gateway
An OS command injection vulnerability in the web administration component of Micro Focus Secure Messaging Gateway (SMG) allows a remote attacker authenticated as a privileged user to execute arbitrary OS commands on the SMG server.
network
low complexity
microfocus CWE-78
7.2
2018-06-29 CVE-2018-12464 SQL Injection vulnerability in Microfocus Secure Messaging Gateway
A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote attacker to execute arbitrary SQL statements against the database.
network
low complexity
microfocus CWE-89
critical
9.8