CVE-2023-23955

< 7.3.13.1

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Server-Side Request Forgery vul

8.1HIGH

CVE-2023-23954

< 7.3.13.1

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Stored Cross-Site Scripting vul

5.4MEDIUM

CVE-2023-23953

< 7.3.13.1

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to an Elevation of Privilege vulnera

7.8HIGH

CVE-2023-23952

< 7.3.13.1

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Command Injection vulnerability

9.8CRITICAL

CVE-2021-46825

all versions

Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to an HTTP desync vulnerability. When a remote unauthenticated

9.1CRITICAL

CVE-2019-18375

>= 6.7.4 and < 6.7.4.10

The ASG and ProxySG management consoles are susceptible to a session hijacking vulnerability. A remote attacker, with access to th

6.5MEDIUM

CVE-2018-18371

>= 6.7 and < 6.7.4.2

The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in

6.5MEDIUM

CVE-2018-18370

>= 6.7 and < 6.7.4.2

The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in

6.1MEDIUM

CVE-2018-5241

all versions

Symantec Advanced Secure Gateway (ASG) 6.6 and 6.7, and ProxySG 6.5, 6.6, and 6.7 are susceptible to a SAML authentication bypass

9.8CRITICAL

CVE-2017-13678

>= 6.6 and < 6.6.5.14

Stored XSS vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A malicious appliance admi

4.8MEDIUM

CVE-2017-13677

>= 6.6 and < 6.6.5.14

Denial-of-service (DoS) vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A remote atta

7.5HIGH

CVE-2016-10258

>= 6.6 and < 6.6.5.14

Unrestricted file upload vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A malicious

6.8MEDIUM

CVE-2016-10257

>= 6.7 and < 6.7.2.1

The Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 (prior to 6.7.2.1), ProxySG 6.5 (prior to 6.5.10.6), ProxySG 6.6, and Prox

6.1MEDIUM

CVE-2016-6594

all versions

Blue Coat Advanced Secure Gateway 6.6, CacheFlow 3.4, ProxySG 6.5 and 6.6 allows remote attackers to bypass blocked requests, user

7.5HIGH

CVE-2016-9100

>= 6.6 and < 6.6.5.13

Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6

7.8HIGH

CVE-2016-9099

>= 6.7 and < 6.7.2.1

Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 prior to 6.7.2.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6, and ProxySG 6.7

6.1MEDIUM

CVE-2016-9097

all versions

The Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.8, ProxySG 6.5 prior 6.5.10.6, ProxySG 6.6 prior to 6.6.5.8, and Pro

7.2HIGH

CVE-2016-9091

<= 6.6.5.2

Blue Coat Advanced Secure Gateway (ASG) 6.6 before 6.6.5.4 and Content Analysis System (CAS) 1.3 before 1.3.7.4 are susceptible to

7.2HIGH

CVE-2015-8597

all versions

Open redirect vulnerability in Blue Coat ProxySG 6.5 before 6.5.8.8 and 6.6 and Advanced Secure Gateway (ASG) 6.6 might allow remo

7.4HIGH