CVE-2014-1643

CWE-2643 documents3 sources
Severity
4.0MEDIUM
EPSS
0.1%
top 68.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Symantec Encryption Management Server
Timeline
PublishedFeb 7
Latest updateMay 14

Description

The Web Email Protection component in Symantec Encryption Management Server (aka PGP Universal Server) before 3.3.2 allows remote authenticated users to read the stored outbound e-mail messages of arbitrary users via a modified URL.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-39h8-w6xg-pm7c: The Web Email Protection component in Symantec Encryption Management Server (aka PGP Universal Server) before 32022-05-14
CVEList
CVE-2014-1643: The Web Email Protection component in Symantec Encryption Management Server (aka PGP Universal Server) before 32014-02-07
CVE-2014-1643 (MEDIUM CVSS 4) | The Web Email Protection component | cvebase.io