SQL Injection Vulnerability in Symantec Web Gateway Management Console
CVE-2014-1650

Currently unrated

Key Information:

Vendor: Symantec
Status: Web Gateway
Vendor: CVE Published:; 18 June 2014

Summary

The vulnerability in the management console of Symantec Web Gateway allows remote authenticated users to execute arbitrary SQL commands. This oversight occurs through unspecified vectors, exposing the system to risks associated with unauthorized database access. It is vital for users to update to version 5.2.1 or later to mitigate potential threats stemming from this weakness.

References

http://www.securitytracker.com/id/1030443

vdb-entryx_refsource_SECTRACK

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/67753

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jun 18, 2014
Vulnerability Reserved
Jan 23, 2014