Broadcom: >> Symantec Proxysg >> 6.7.4.2 Security Vulnerabilities
The Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are susceptible to an authentication bypass vulnerability. An unauthenticated attacker can execute arbitrary CLI commands, view/modify the appliance configuration and policy, and shutdown/restart the appliance.
CVSS Score
9.8
EPSS Score
0.005
Published
2021-06-30
The ASG and ProxySG management consoles are susceptible to a session hijacking vulnerability. A remote attacker, with access to the appliance management interface, can hijack the session of a currently logged-in user and access the management console.
CVSS Score
6.5
EPSS Score
0.002
Published
2020-04-10
Stored XSS vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A malicious appliance administrator can inject arbitrary JavaScript code in the management console web client application.
CVSS Score
4.8
EPSS Score
0.003
Published
2018-04-11