VYPR

Secure Messaging Gateway

by Microfocus

CVEs (2)

  • CVE-2018-12464CriJun 29, 2018
    risk 0.74cvss 10.0epss 0.81

    A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote attacker to execute arbitrary SQL statements against the database. This can be exploited to create an administrative account…

  • CVE-2018-12465CriJun 29, 2018
    risk 0.68cvss 9.1epss 0.79

    An OS command injection vulnerability in the web administration component of Micro Focus Secure Messaging Gateway (SMG) allows a remote attacker authenticated as a privileged user to execute arbitrary OS commands on the SMG server. This can be exploited in conjunction with…