Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:39 p.m.7 views

CVE-2021-30648

The Symantec Advanced Secure Gateway ASG and ProxySG web management consoles are susceptible to an authentication bypass vulnerability. An unauthenticated attacker can execute arbitrary CLI commands, view/modify the appliance configuration and policy, and shutdown/restart the appliance...

9.8CVSS7.9AI score0.01447EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.5 views

The vulnerability in the software for network monitoring and IT infrastructure management consoles of the SolarWinds Platform allows a hacker to perform cross-site scripting attacks.

The vulnerability of the software for network monitoring and IT infrastructure management solutions developed by SolarWinds exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attack...

7.9CVSS5.2AI score0.00463EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2023/08/18 12:0 a.m.4 views

Logitec LAN 安全漏洞

Logitec LAN is a series of routers from Logitec, a Swiss company. A security vulnerability exists in Logitec LAN that stems from the presence of a hidden functionality vulnerability that could allow an unauthenticated attacker to log in to certain management consoles of the product and execute...

9.8CVSS8.6AI score0.00604EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/08/10 12:0 a.m.2 views

Logitec LAN Security Vulnerability

Logitec LAN is a series of routers from Logitech Switzerland. A security vulnerability exists in the Logitec LAN-W300N/PR5 and LAN-W300N/RS, which originates from the ability of an unauthenticated attacker to log in to certain management consoles of the product and execute arbitrary operating...

9.8CVSS7.4AI score0.00701EPSS
Exploits0References4
OSV
OSV
added 2020/08/27 9:15 p.m.7 views

CVE-2020-8602

A vulnerability in the management consoles of Trend Micro Deep Security 10.0-12.0 and Trend Micro Vulnerability Protection 2.0 SP2 may allow an authenticated attacker with full control privileges to bypass file integrity checks, leading to remote code execution...

7.2CVSS6.1AI score0.04235EPSS
Exploits0References1
Prion
Prion
added 2020/08/27 9:15 p.m.11 views

Design/Logic Flaw

A vulnerability in the management consoles of Trend Micro Deep Security 10.0-12.0 and Trend Micro Vulnerability Protection 2.0 SP2 may allow an authenticated attacker with full control privileges to bypass file integrity checks, leading to remote code execution...

6.5CVSS7.2AI score0.04235EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2020/04/09 11:16 p.m.63 views

CVE-2019-18375

The vulnerability CVE-2019-18375 affects Broadcom ASG (Advanced Secure Gateway) and ProxySG management consoles. A remote attacker with access to the appliance management interface can hijack an active session and access the management console with the hijacked user’s privileges. Impact is sessio...

6.5CVSS6.4AI score0.01231EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2018/04/26 12:0 a.m.5 views

Symantec Advanced Secure Gateway and ProxySG Arbitrary File Upload Vulnerability

Symantec Advanced Secure Gateway ASG and ProxySG are both security gateway appliances from Symantec USA. An arbitrary file upload vulnerability exists in Symantec ASG and ProxySG management consoles. An attacker could exploit this vulnerability to upload arbitrary malicious files to the managemen...

6.8CVSS7.1AI score0.04936EPSS
Exploits2References1
NVD
NVD
added 2018/04/11 2:29 p.m.25 views

CVE-2017-13678

Stored XSS vulnerability in the Symantec Advanced Secure Gateway ASG and ProxySG management consoles. A malicious appliance administrator can inject arbitrary JavaScript code in the management console web client application...

4.8CVSS4.9AI score0.01079EPSS
Exploits0References3
Prion
Prion
added 2018/04/11 2:29 p.m.15 views

Cross site scripting

Stored XSS vulnerability in the Symantec Advanced Secure Gateway ASG and ProxySG management consoles. A malicious appliance administrator can inject arbitrary JavaScript code in the management console web client application...

3.5CVSS4.8AI score0.01079EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2018/04/11 2:29 p.m.2 views

CVE-2017-13677

Denial-of-service DoS vulnerability in the Symantec Advanced Secure Gateway ASG and ProxySG management consoles. A remote attacker can use crafted HTTP/HTTPS requests to cause denial-of-service through management console application crashes...

7.5CVSS5.8AI score0.0523EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/04/11 2:0 p.m.28 views

CVE-2016-10258

Unrestricted file upload vulnerability in the Symantec Advanced Secure Gateway ASG and ProxySG management consoles. A malicious appliance administrator can upload arbitrary malicious files to the management console and trick another administrator user into downloading and executing malicious code...

6.9AI score0.04936EPSS
Exploits2References3
Symantec
Symantec
added 2018/04/10 8:0 a.m.51 views

SA162: Multiple ASG and ProxySG Vulnerabilities

SUMMARY The Symantec ASG and ProxySG management consoles are susceptible to several vulnerabilities. A remote attacker, with access to the management console, can cause denial of service through management console application crashes. A malicious appliance administrator can also inject arbitrary...

6CVSS1.4AI score0.0523EPSS
Exploits2Affected Software2
NVD
NVD
added 2017/05/11 2:30 p.m.18 views

CVE-2016-9097

The Symantec Advanced Secure Gateway ASG 6.6 prior to 6.6.5.8, ProxySG 6.5 prior 6.5.10.6, ProxySG 6.6 prior to 6.6.5.8, and ProxySG 6.7 prior to 6.7.1.2 management consoles do not, under certain circumstances, correctly authorize administrator users. A malicious administrator with read-only acce...

8CVSS7AI score0.02353EPSS
Exploits0References3
exploitpack
exploitpack
added 2017/04/03 12:0 a.m.32 views

Bluecoat ASG 6.6CAS 1.3 - Local Privilege Escalation (Metasploit)

Bluecoat ASG 6.6CAS 1.3 - Local Privilege Escalation Metasploit Exploit Title: OS Command Injection Vulnerability in BlueCoat ASG and CAS Date: April 3, 2017 Exploit Authors: Chris Hebert, Peter Paccione and Corey Boyd Contact: chrisdhebertatgmail.com Vendor Security Advisory:...

9CVSS0.4AI score0.10126EPSS
Exploits8
CNVD
CNVD
added 2016/07/11 12:0 a.m.3 views

Symantec Workspace Streaming/Workspace Virtualization Path Traversal Vulnerability

Symantec Workspace Streaming enables on-demand application setup, real-time software license management, and instant application upgrades.Symantec Workspace Virtualization enables application virtualization, which reduces application conflicts, lowers testing requirements, and reduces support...

6.1CVSS6.8AI score0.01811EPSS
Exploits0References1
Rows per page
Query Builder