CVE-2016-9091

🗓️ 05 Apr 2017 15:00:00Reported by symantecType

Blue Coat ASG and CAS OS command injection vulnerabilit

Reporter	Title	Published	Views	Family All 15
0day.today	Bluecoat ASG 6.6/CAS 1.3 - OS Command Injection Exploit	4 Apr 201700:00	–	zdt
0day.today	Bluecoat ASG 6.6/CAS 1.3 - Privilege Escalation Exploit	4 Apr 201700:00	–	zdt
Circl	CVE-2016-9091	3 Apr 201700:00	–	circl
CNVD	Bluecoat ASG 6.6/CAS OS Command Injection Vulnerability Vulnerability	5 Apr 201700:00	–	cnvd
Check Point Advisories	Blue Coat ASG Command Injection (CVE-2016-9091)	23 Feb 202100:00	–	checkpoint_advisories
Cvelist	CVE-2016-9091	5 Apr 201715:00	–	cvelist
Exploit DB	Bluecoat ASG 6.6/CAS 1.3 - OS Command Injection (Metasploit)	3 Apr 201700:00	–	exploitdb
Exploit DB	Bluecoat ASG 6.6/CAS 1.3 - Local Privilege Escalation (Metasploit)	3 Apr 201700:00	–	exploitdb
exploitpack	Bluecoat ASG 6.6CAS 1.3 - OS Command Injection (Metasploit)	3 Apr 201700:00	–	exploitpack
exploitpack	Bluecoat ASG 6.6CAS 1.3 - Local Privilege Escalation (Metasploit)	3 Apr 201700:00	–	exploitpack

NVD

Node

bluecoat advanced_secure_gatewayRange≤6.6.5.2

bluecoat content_analysis_system_softwareRange≤1.3.7.3

[
  {
    "product": "Blue Coat ASG",
    "vendor": "Symantec Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "6.6 prior to 6.6.5.4"
      }
    ]
  },
  {
    "product": "Blue Coat CAS",
    "vendor": "Symantec Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "1.3 prior to 1.3.7.4"
      }
    ]
  }
]

Source	Link
bto	www.bto.bluecoat.com/security-advisory/sa138
exploit-db	www.exploit-db.com/exploits/41785/
exploit-db	www.exploit-db.com/exploits/41786/
securityfocus	www.securityfocus.com/bid/97372

13 May 2026 00:24Current

7.2High risk

Vulners AI Score7.2

CVSS 37.2

CVSS 29

EPSS0.36512

CWE-78