VYPR
Unrated severityNVD Advisory· Published Feb 1, 2015· Updated Jun 17, 2026

CVE-2014-7287

CVE-2014-7287

Description

The key-management component in Symantec PGP Universal Server and Encryption Management Server before 3.3.2 MP7 allows remote attackers to trigger unintended content in outbound e-mail messages via a crafted key UID value in an inbound e-mail message, as demonstrated by the outbound Subject header.

Affected products

4
  • cpe:2.3:a:symantec:encryption_management_server:*:mp6:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:symantec:encryption_management_server:*:mp6:*:*:*:*:*:*range: <=3.3.2
    • (no CPE)range: < 3.3.2 MP7
  • cpe:2.3:a:symantec:pgp_universal_server:*:mp6:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:symantec:pgp_universal_server:*:mp6:*:*:*:*:*:*range: <=3.3.2
    • (no CPE)range: < 3.3.2 MP7

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.