CVE-2015-6548

Currently unrated

Key Information:

Vendor: Symantec
Status: Web Gateway
Vendor: CVE Published:; 20 September 2015

Summary

Multiple SQL injection vulnerabilities in a PHP script in the management console on Symantec Web Gateway (SWG) appliances with software before 5.2.2 DB 5.0.0.1277 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

References

http://www.securitytracker.com/id/1033625

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/76729

vdb-entryx_refsource_BID

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

Timeline

Vulnerability published
Sep 20, 2015
Vulnerability Reserved
Aug 21, 2015