CVE-2014-7285 in Symantec Web Gatewayinfo

Summary

The management console on the Symantec Web Gateway (SWG) appliance before 5.2.2 allows remote authenticated users to execute arbitrary OS commands by injecting command strings into unspecified PHP scripts.

Reservation

10/02/2014

Disclosure

12/17/2014

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
68442Symantec Web Gateway command injection77HighOfficial fixCVE-2014-7285

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!