Vulnerabilities > Broadcom > Advanced Secure Gateway > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-06-01 CVE-2023-23954 Cross-site Scripting vulnerability in Broadcom Advanced Secure Gateway and Content Analysis
Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Stored Cross-Site Scripting vulnerability.
network
low complexity
broadcom CWE-79
5.4
2020-04-10 CVE-2019-18375 Unspecified vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
The ASG and ProxySG management consoles are susceptible to a session hijacking vulnerability.
network
low complexity
broadcom
6.5
2019-08-30 CVE-2018-18371 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser.
network
low complexity
broadcom CWE-327
6.5
2019-08-30 CVE-2018-18370 Cross-site Scripting vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser.
network
low complexity
broadcom CWE-79
6.1
2018-04-11 CVE-2017-13678 Cross-site Scripting vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
Stored XSS vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles.
network
low complexity
broadcom CWE-79
4.8
2018-04-11 CVE-2016-10258 Unrestricted Upload of File with Dangerous Type vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
Unrestricted file upload vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles.
network
low complexity
broadcom CWE-434
6.8
2018-01-10 CVE-2016-10257 Cross-site Scripting vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
The Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 (prior to 6.7.2.1), ProxySG 6.5 (prior to 6.5.10.6), ProxySG 6.6, and ProxySG 6.7 (prior to 6.7.2.1) management console is susceptible to a reflected XSS vulnerability.
network
low complexity
broadcom CWE-79
6.1
2017-05-11 CVE-2016-9099 Open Redirect vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 prior to 6.7.2.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6, and ProxySG 6.7 prior to 6.7.2.1 are susceptible to an open redirection vulnerability.
network
low complexity
broadcom CWE-601
6.1