Lucene search

[email protected]CVE-2010-5189

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-5189

2022-10-0316:21:03

CWE-264

[email protected]

web.nvd.nist.gov

blue coat proxysg

cve-2010-5189

command execution

remote authentication

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.1%

JSON

Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote authenticated users to execute arbitrary CLI commands by leveraging read-only administrator privileges and establishing an HTTPS session.

Affected configurations

NVD

Node

bluecoatsgosRange≤4.3.4

bluecoatsgosMatch3.2.6

bluecoatsgosMatch4.1.2.1

bluecoatsgosMatch4.2.1.2

bluecoatsgosMatch4.2.1.6

bluecoatsgosMatch4.2.2

bluecoatsgosMatch4.2.2.1

bluecoatsgosMatch4.2.2.2

bluecoatsgosMatch4.2.3

bluecoatsgosMatch4.2.3.4

bluecoatsgosMatch4.2.3.7

bluecoatsgosMatch4.2.3.12

bluecoatsgosMatch4.2.3.21

bluecoatsgosMatch4.2.3.26

bluecoatsgosMatch4.2.4.1

bluecoatsgosMatch4.2.5

bluecoatsgosMatch4.2.5.1

bluecoatsgosMatch4.2.6

bluecoatsgosMatch4.2.6.1

bluecoatsgosMatch4.2.6.4

bluecoatsgosMatch4.2.7.1

bluecoatsgosMatch5.2.2.4

bluecoatsgosMatch5.4.5

bluecoatsgosMatch5.5.4

bluecoatsgosMatch6.1

AND

bluecoatproxysg

bluecoatproxysg_sg210-10Match--acceleration

bluecoatproxysg_sg210-10Match--full_proxy

bluecoatproxysg_sg210-25Match--acceleration

bluecoatproxysg_sg210-25Match--full_proxy

bluecoatproxysg_sg210-5Match--acceleration

bluecoatproxysg_sg210-5Match--full_proxy

bluecoatproxysg_sg510-10Match--acceleration

bluecoatproxysg_sg510-10Match--full_proxy

bluecoatproxysg_sg510-20Match--acceleration

bluecoatproxysg_sg510-20Match--full_proxy

bluecoatproxysg_sg510-25Match--acceleration

bluecoatproxysg_sg510-25Match--full_proxy

bluecoatproxysg_sg510-5Match--full_proxy

bluecoatproxysg_sg810-10Match--acceleration

bluecoatproxysg_sg810-10Match--full_proxy

bluecoatproxysg_sg810-20Match--acceleration

bluecoatproxysg_sg810-20Match--full_proxy

bluecoatproxysg_sg810-25Match--acceleration

bluecoatproxysg_sg810-25Match--full_proxy

bluecoatproxysg_sg810-5Match--full_proxy

bluecoatproxysg_sg9000-10Match--acceleration

bluecoatproxysg_sg9000-10Match--full_proxy

bluecoatproxysg_sg9000-20Match--acceleration

bluecoatproxysg_sg9000-20Match--full_proxy

bluecoatproxysg_sg9000-5Match--acceleration

bluecoatproxysg_sg9000-5Match--full_proxy

CPENameOperatorVersion
bluecoat:sgosbluecoat sgosle4.3.4
bluecoat:sgosbluecoat sgoseq3.2.6
bluecoat:sgosbluecoat sgoseq4.1.2.1
bluecoat:sgosbluecoat sgoseq4.2.1.2
bluecoat:sgosbluecoat sgoseq4.2.1.6
bluecoat:sgosbluecoat sgoseq4.2.2
bluecoat:sgosbluecoat sgoseq4.2.2.1
bluecoat:sgosbluecoat sgoseq4.2.2.2
bluecoat:sgosbluecoat sgoseq4.2.3
bluecoat:sgosbluecoat sgoseq4.2.3.4

CPE	Name	Operator	Version
bluecoat:sgos	bluecoat sgos	le	4.3.4
bluecoat:sgos	bluecoat sgos	eq	3.2.6
bluecoat:sgos	bluecoat sgos	eq	4.1.2.1
bluecoat:sgos	bluecoat sgos	eq	4.2.1.2
bluecoat:sgos	bluecoat sgos	eq	4.2.1.6
bluecoat:sgos	bluecoat sgos	eq	4.2.2
bluecoat:sgos	bluecoat sgos	eq	4.2.2.1
bluecoat:sgos	bluecoat sgos	eq	4.2.2.2
bluecoat:sgos	bluecoat sgos	eq	4.2.3
bluecoat:sgos	bluecoat sgos	eq	4.2.3.4

Rows per page:

1-10 of 401

References

kb.bluecoat.com/index?page=content&id=SA45

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.1%

JSON

Related for CVE-2010-5189

nvd1 prion1 cvelist1