Unrated severityNVD Advisory· Published May 27, 2014· Updated May 6, 2026

CVE-2012-6452

Description

Axway Secure Messenger before 6.5 Updated Release 7, as used in Axway Email Firewall, provides different responses to authentication requests depending on whether the user exists, which allows remote attackers to enumerate users via a series of requests.

Affected products

Axway/Email Firewall
cpe:2.3:a:axway:email_firewall:-:*:*:*:*:*:*:*
Axway/Secure Messenger2 versions
cpe:2.3:a:axway:secure_messenger:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:axway:secure_messenger:*:*:*:*:*:*:*:*range: <=6.5.0
- cpe:2.3:a:axway:secure_messenger:6.3.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/bugtraq/2013-01/0076.htmlnvd
www.securityfocus.com/bid/57457nvd
exchange.xforce.ibmcloud.com/vulnerabilities/81388nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000