Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec management console vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-13677
Denial-of-service (DoS) vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A remote attacker can use crafted HTTP/HTTPS requests to cause denial-of-service through management console application crashes.
Broadcom Advanced Secure Gateway
Broadcom Symantec Proxysg
7.2
CVSSv3
CVE-2016-9097
The Symantec Advanced Secure Gateway (ASG) 6.6 before 6.6.5.8, ProxySG 6.5 prior 6.5.10.6, ProxySG 6.6 before 6.6.5.8, and ProxySG 6.7 before 6.7.1.2 management consoles do not, under certain circumstances, correctly authorize administrator users. A malicious administrator with r...
Broadcom Advanced Secure Gateway 6.6.5.1
Broadcom Advanced Secure Gateway 6.6.4
Broadcom Advanced Secure Gateway 6.6.4.3
Broadcom Advanced Secure Gateway 6.6.3
Broadcom Advanced Secure Gateway 6.6
Broadcom Symantec Proxysg 6.5.6.1
Broadcom Symantec Proxysg 6.5.2.10
Broadcom Symantec Proxysg 6.5
Broadcom Symantec Proxysg 6.5.9.8
Broadcom Symantec Proxysg 6.5.9.2
Broadcom Symantec Proxysg 6.5.2
Broadcom Symantec Proxysg 6.5.1
Broadcom Symantec Proxysg 6.5.7.6
Broadcom Symantec Proxysg 6.5.9.14
Broadcom Symantec Proxysg 6.5.5.7
Broadcom Symantec Proxysg 6.5.9.10
Broadcom Symantec Proxysg 6.5.4.1
Broadcom Symantec Proxysg 6.6
Broadcom Symantec Proxysg 6.6.2.2
Broadcom Symantec Proxysg 6.6.3
Broadcom Symantec Proxysg 6.6.4.3
Broadcom Symantec Proxysg 6.6.4
6.8
CVSSv3
CVE-2016-10258
Unrestricted file upload vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A malicious appliance administrator can upload arbitrary malicious files to the management console and trick another administrator user into downloading and execu...
Broadcom Advanced Secure Gateway
Broadcom Symantec Proxysg
1 EDB exploit
6.8
CVSSv3
CVE-2017-15527
Prior to ITMS 8.1 RU4, the Symantec Management Console can be susceptible to a directory traversal exploit, which is a type of attack that can occur when there is insufficient security validation / sanitization of user-supplied input file names, such that characters representing ...
Symantec Management Console
6.7
CVSSv3
CVE-2022-25627
An authenticated administrator who has physical access to the environment can carry out Remote Command Execution on Management Console in Symantec Identity Manager 14.4
Broadcom Symantec Identity Governance And Administration 14.3
Broadcom Symantec Identity Governance And Administration 14.4
6.5
CVSSv3
CVE-2019-18375
The ASG and ProxySG management consoles are susceptible to a session hijacking vulnerability. A remote attacker, with access to the appliance management interface, can hijack the session of a currently logged-in user and access the management console.
Broadcom Advanced Secure Gateway
Broadcom Symantec Proxysg
6.2
CVSSv3
CVE-2017-10356
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144; JRockit: R28.3.15. Easily exploitable vulnerability allows unauthent...
Oracle Jdk 1.9.0
Oracle Jre 1.9.0
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.6.0
Oracle Jre 1.6.0
Oracle Jre 1.8.0
Oracle Jre 1.7.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Server Tus 7.4
Redhat Enterprise Linux Eus 7.4
Redhat Enterprise Linux Eus 7.5
Redhat Satellite 5.8
Redhat Enterprise Linux Server Tus 7.6
Redhat Enterprise Linux Server Aus 7.6
Redhat Enterprise Linux Eus 7.6
6.1
CVSSv3
CVE-2016-10256
The Symantec ProxySG 6.5 (before 6.5.10.6), 6.6, and 6.7 (before 6.7.2.1) management console is susceptible to a reflected XSS vulnerability. A remote attacker can use a crafted management console URL in a phishing attack to inject arbitrary JavaScript code into the management co...
Broadcom Symantec Proxysg 6.6
Broadcom Symantec Proxysg
6.1
CVSSv3
CVE-2016-10257
The Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 (before 6.7.2.1), ProxySG 6.5 (before 6.5.10.6), ProxySG 6.6, and ProxySG 6.7 (before 6.7.2.1) management console is susceptible to a reflected XSS vulnerability. A remote attacker can use a crafted management console URL in...
Broadcom Advanced Secure Gateway
Broadcom Advanced Secure Gateway 6.6
Broadcom Symantec Proxysg
Broadcom Symantec Proxysg 6.6
6.1
CVSSv3
CVE-2017-10293
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Javadoc). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Java SE. Succ...
Oracle Jdk 1.9.0
Oracle Jre 1.9.0
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.6.0
Oracle Jre 1.6.0
Oracle Jre 1.8.0
Oracle Jre 1.7.0
Netapp Cloud Backup -
Netapp Oncommand Balance -
Netapp Element Software -
Netapp Steelstore Cloud Integrated Storage -
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Virtual Storage Console
Netapp E-series Santricity Storage Manager -
Netapp Oncommand Unified Manager -
Netapp Active Iq Unified Manager
Netapp Vasa Provider For Clustered Data Ontap
Netapp E-series Santricity Management Plug-ins -
Netapp Oncommand Shift -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »