Vulnerabilities > Broadcom > Symantec Proxysg

DATE CVE VULNERABILITY TITLE RISK
2021-06-30 CVE-2021-30648 Improper Authentication vulnerability in Broadcom products
The Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are susceptible to an authentication bypass vulnerability.
network
low complexity
broadcom CWE-287
critical
9.8
2020-04-10 CVE-2019-18375 Unspecified vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
The ASG and ProxySG management consoles are susceptible to a session hijacking vulnerability.
network
low complexity
broadcom
6.5
2019-08-30 CVE-2018-18371 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser.
network
low complexity
broadcom CWE-327
6.5
2019-08-30 CVE-2018-18370 Cross-site Scripting vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser.
network
low complexity
broadcom CWE-79
6.1
2018-05-29 CVE-2018-5241 Unspecified vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
Symantec Advanced Secure Gateway (ASG) 6.6 and 6.7, and ProxySG 6.5, 6.6, and 6.7 are susceptible to a SAML authentication bypass vulnerability.
network
low complexity
broadcom
critical
9.8
2018-04-11 CVE-2017-13678 Cross-site Scripting vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
Stored XSS vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles.
network
low complexity
broadcom CWE-79
4.8
2018-04-11 CVE-2017-13677 Unspecified vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
Denial-of-service (DoS) vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles.
network
low complexity
broadcom
7.5
2018-04-11 CVE-2016-10258 Unrestricted Upload of File with Dangerous Type vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
Unrestricted file upload vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles.
network
low complexity
broadcom CWE-434
6.8
2018-01-10 CVE-2016-10257 Cross-site Scripting vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
The Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 (prior to 6.7.2.1), ProxySG 6.5 (prior to 6.5.10.6), ProxySG 6.6, and ProxySG 6.7 (prior to 6.7.2.1) management console is susceptible to a reflected XSS vulnerability.
network
low complexity
broadcom CWE-79
6.1
2018-01-10 CVE-2016-10256 Cross-site Scripting vulnerability in Broadcom Symantec Proxysg
The Symantec ProxySG 6.5 (prior to 6.5.10.6), 6.6, and 6.7 (prior to 6.7.2.1) management console is susceptible to a reflected XSS vulnerability.
network
low complexity
broadcom CWE-79
6.1