Axway : Security Vulnerabilities, CVEs, Published In 2014

CVE-2013-7057

Cross-site request forgery (CSRF) vulnerability in Axway SecureTransport 5.1 SP2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that upload arbitrary files via a crafted request to api/v1.0/files/.
Max CVSS
6.8
EPSS Score
0.70%
Published
2014-11-04
Updated
2017-08-29

CVE-2012-6452

Axway Secure Messenger before 6.5 Updated Release 7, as used in Axway Email Firewall, provides different responses to authentication requests depending on whether the user exists, which allows remote attackers to enumerate users via a series of requests.
Max CVSS
5.0
EPSS Score
0.33%
Published
2014-05-27
Updated
2017-08-29
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close