Vulnerabilities > Broadcom > Symantec Proxysg > 6.7.3.5

DATE CVE VULNERABILITY TITLE RISK
2021-06-30 CVE-2021-30648 Improper Authentication vulnerability in Broadcom products
The Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are susceptible to an authentication bypass vulnerability.
network
low complexity
broadcom CWE-287
critical
 9.8
9.8
2019-08-30 CVE-2018-18371 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser.
network
low complexity
broadcom CWE-327
6.5
6.5
2019-08-30 CVE-2018-18370 Cross-site Scripting vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser.
network
low complexity
broadcom CWE-79
6.1
6.1
2018-04-11 CVE-2017-13678 Cross-site Scripting vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg
Stored XSS vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles.
network
low complexity
broadcom CWE-79
4.8
4.8