VYPR

SMG

by Broadcom Corporation

CVEs (3)

  • CVE-2021-30651Jun 24, 2022
    risk 0.00cvss epss 0.01

    A malicious authenticated SMG administrator user can obtain passwords for external LDAP/Active Directory servers that they might not otherwise be authorized to access.

  • CVE-2020-12595Dec 10, 2020
    risk 0.00cvss epss 0.01

    An information disclosure flaw allows a malicious, authenticated, privileged web UI user to obtain a password for a remote SCP backup server that they might not otherwise be authorized to access. This affects SMG prior to 10.7.4.

  • CVE-2020-12594Dec 10, 2020
    risk 0.00cvss epss 0.01

    A privilege escalation flaw allows a malicious, authenticated, privileged CLI user to escalate their privileges on the system and gain full control over the SMG appliance. This affects SMG prior to 10.7.4.