Bluecoat: >> Unified Agent >> 4.1.3 Security Vulnerabilities
Blue Coat Unified Agent before 4.6.2 does not prevent modification of its configuration files when running in local enforcement mode, which allows local administrators to unblock categories or disable the agent via unspecified vectors.
CVSS Score
2.1
EPSS Score
0.001
Published
2015-12-07
Blue Coat ProxyClient before 3.3.3.3 and 3.4.x before 3.4.4.10 and Unified Agent before 4.1.3.151952 does not properly validate certain certificates, which allows man-in-the-middle attackers to spoof ProxySG Client Managers, and consequently modify configurations and execute arbitrary software updates, via a crafted certificate.
CVSS Score
7.1
EPSS Score
0.002
Published
2015-02-02