EUVD-2016-9918

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Symantec Advanced Secure Gateway and ProxySG consoles lack proper admin user authorization vulnerabilities.

Reporter	Title	Published	Views	Family All 7
Tenable Nessus	Symantec (Blue Coat) ProxySG 6.5.x < 6.5.10.6 / 6.6.x < 6.6.5.8 / 6.7.x < 6.7.1.2 Impromper User Authorization Vulnerability	3 Nov 201700:00	–	nessus
CNVD	Symantec ProxySG and Advanced Secure Gateway Remote Authorization Bypass Vulnerability	3 Nov 201700:00	–	cnvd
CVE	CVE-2016-9097	11 May 201714:01	–	cve
Cvelist	CVE-2016-9097	11 May 201714:01	–	cvelist
NVD	CVE-2016-9097	11 May 201714:30	–	nvd
Prion	Design/Logic Flaw	11 May 201714:30	–	prion
Symantec	SA146: Improper User Authorization in ProxySG and ASG	26 Oct 201708:00	–	symantec

[
  {
    "enisaIdVendor": [
      {
        "id": "3cf25336-9940-3c91-bb4f-0abe540da0df",
        "vendor": {
          "name": "Symantec Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "5de70f2d-abc7-30f8-9e64-d3f1e5bf3855",
        "product": {
          "name": "Symantec Advanced Secure Gateway (ASG) and ProxySG"
        },
        "product_version": "ASG 6.6 prior to 6.6.5.8, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.8, ProxySG 6.7 prior to 6.7.1.2"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/101530
securitytracker	www.securitytracker.com/id/1039701
symantec	www.symantec.com/security-center/network-protection-security-advisories/SA146
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7High risk

Vulners AI Score7

CVSS 37.2

CVSS 28

EPSS0.01223