Cross-Site Scripting Vulnerability in Symantec Messaging Gateway by Broadcom
CVE-2022-25630
5.4MEDIUM
What is CVE-2022-25630?
An authenticated user in Symantec Messaging Gateway can exploit a cross-site scripting vulnerability by embedding malicious content within the admin group policy page. This could allow for the execution of arbitrary scripts in the context of an administrator's session, potentially compromising sensitive information or altering configurations without authorization.
Affected Version(s)
Symantec Messaging Gateway All releases prior to SMG 10.8