CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9097

The Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.8, ProxySG 6.5 prior 6.5.10.6, ProxySG 6.6 prior to 6.6.5.8, and ProxySG 6.7 prior to 6.7.1.2 management consoles do not, under certain circumstances, correctly authorize administrator users. A malicious administrator with read-only access can exploit this vulnerability to access management console functionality that requires read-write access privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 78.3%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 8.0

References

Products affected by CVE-2016-9097

Broadcom » Advanced Secure Gateway » Version: 6.6

cpe:2.3:a:broadcom:advanced_secure_gateway:6.6
Broadcom » Advanced Secure Gateway » Version: 6.6.3

cpe:2.3:a:broadcom:advanced_secure_gateway:6.6.3
Broadcom » Advanced Secure Gateway » Version: 6.6.4

cpe:2.3:a:broadcom:advanced_secure_gateway:6.6.4
Broadcom » Advanced Secure Gateway » Version: 6.6.4.3

cpe:2.3:a:broadcom:advanced_secure_gateway:6.6.4.3
Broadcom » Advanced Secure Gateway » Version: 6.6.5.1

cpe:2.3:a:broadcom:advanced_secure_gateway:6.6.5.1
Broadcom » Symantec Proxysg » Version: 6.5

cpe:2.3:a:broadcom:symantec_proxysg:6.5
Broadcom » Symantec Proxysg » Version: 6.5.1

cpe:2.3:a:broadcom:symantec_proxysg:6.5.1
Broadcom » Symantec Proxysg » Version: 6.5.2

cpe:2.3:a:broadcom:symantec_proxysg:6.5.2
Broadcom » Symantec Proxysg » Version: 6.5.2.10

cpe:2.3:a:broadcom:symantec_proxysg:6.5.2.10
Broadcom » Symantec Proxysg » Version: 6.5.4.1

cpe:2.3:a:broadcom:symantec_proxysg:6.5.4.1
Broadcom » Symantec Proxysg » Version: 6.5.5.7

cpe:2.3:a:broadcom:symantec_proxysg:6.5.5.7
Broadcom » Symantec Proxysg » Version: 6.5.6.1

cpe:2.3:a:broadcom:symantec_proxysg:6.5.6.1
Broadcom » Symantec Proxysg » Version: 6.5.7.6

cpe:2.3:a:broadcom:symantec_proxysg:6.5.7.6
Broadcom » Symantec Proxysg » Version: 6.5.9.10

cpe:2.3:a:broadcom:symantec_proxysg:6.5.9.10
Broadcom » Symantec Proxysg » Version: 6.5.9.14

cpe:2.3:a:broadcom:symantec_proxysg:6.5.9.14
Broadcom » Symantec Proxysg » Version: 6.5.9.2

cpe:2.3:a:broadcom:symantec_proxysg:6.5.9.2
Broadcom » Symantec Proxysg » Version: 6.5.9.8

cpe:2.3:a:broadcom:symantec_proxysg:6.5.9.8
Broadcom » Symantec Proxysg » Version: 6.6

cpe:2.3:a:broadcom:symantec_proxysg:6.6
Broadcom » Symantec Proxysg » Version: 6.6.2

cpe:2.3:a:broadcom:symantec_proxysg:6.6.2
Broadcom » Symantec Proxysg » Version: 6.6.2.1

cpe:2.3:a:broadcom:symantec_proxysg:6.6.2.1
Broadcom » Symantec Proxysg » Version: 6.6.2.2

cpe:2.3:a:broadcom:symantec_proxysg:6.6.2.2
Broadcom » Symantec Proxysg » Version: 6.6.3

cpe:2.3:a:broadcom:symantec_proxysg:6.6.3
Broadcom » Symantec Proxysg » Version: 6.6.3.2

cpe:2.3:a:broadcom:symantec_proxysg:6.6.3.2
Broadcom » Symantec Proxysg » Version: 6.6.4

cpe:2.3:a:broadcom:symantec_proxysg:6.6.4
Broadcom » Symantec Proxysg » Version: 6.6.4.1

cpe:2.3:a:broadcom:symantec_proxysg:6.6.4.1
Broadcom » Symantec Proxysg » Version: 6.6.4.3

cpe:2.3:a:broadcom:symantec_proxysg:6.6.4.3
Broadcom » Symantec Proxysg » Version: 6.6.5

cpe:2.3:a:broadcom:symantec_proxysg:6.6.5
Broadcom » Symantec Proxysg » Version: 6.7

cpe:2.3:a:broadcom:symantec_proxysg:6.7
Broadcom » Symantec Proxysg » Version: 6.7.1.1

cpe:2.3:a:broadcom:symantec_proxysg:6.7.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9097

Products

Pricing

Contact Us