Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asg vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2016-10257
The Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 (before 6.7.2.1), ProxySG 6.5 (before 6.5.10.6), ProxySG 6.6, and ProxySG 6.7 (before 6.7.2.1) management console is susceptible to a reflected XSS vulnerability. A remote attacker can use a crafted management console URL in...
Broadcom Advanced Secure Gateway
Broadcom Advanced Secure Gateway 6.6
Broadcom Symantec Proxysg
Broadcom Symantec Proxysg 6.6
7.5
CVSSv3
CVE-2023-30243
Beijing Netcon NS-ASG Application Security Gateway v6.3 is vulnerable to SQL Injection via TunnelId that allows access to sensitive information.
Netentsec Application Security Gateway 6.3
7.5
CVSSv3
CVE-2023-40850
netentsec NS-ASG 6.3 is vulnerable to Incorrect Access Control. There is a file leak in the website source code of the application security gateway.
Netentsec Ns-asg Firmware 6.3
1 Github repository
9.8
CVSSv3
CVE-2017-6315
Astaro Security Gateway (aka ASG) 7 allows remote malicious users to execute arbitrary code via a crafted request to index.plx.
Sophos Astaro Security Gateway Firmware 7.500
Sophos Astaro Security Gateway Firmware 7.506
1 EDB exploit
4.8
CVSSv3
CVE-2017-13678
Stored XSS vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A malicious appliance administrator can inject arbitrary JavaScript code in the management console web client application.
Broadcom Advanced Secure Gateway
Broadcom Symantec Proxysg
7.5
CVSSv3
CVE-2017-13677
Denial-of-service (DoS) vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A remote attacker can use crafted HTTP/HTTPS requests to cause denial-of-service through management console application crashes.
Broadcom Advanced Secure Gateway
Broadcom Symantec Proxysg
NA
CVE-2024-28521
SQL Injection vulnerability in Netcome NS-ASG Application Security Gateway v.6.3.1 allows a local malicious user to execute arbitrary code and obtain sensitive information via a crafted script to the loginid parameter of the /singlelogin.php component.
NA
CVE-2007-4242
The pop3 Proxy in Astaro Security Gateway (ASG) 7 does not perform virus scanning of attachments that exceed the maximum attachment size, and passes these attachments, which allows remote malicious users to bypass this scanning via a large attachment.
Astaro Security Gateway 7.0
9.8
CVSSv3
CVE-2021-30648
The Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are susceptible to an authentication bypass vulnerability. An unauthenticated attacker can execute arbitrary CLI commands, view/modify the appliance configuration and policy, and shutdown/restart the a...
Broadcom Symantec Proxysg
Broadcom Symantec Advanced Secure Gateway S200-30 Firmware
Broadcom Symantec Advanced Secure Gateway S200-40 Firmware
Broadcom Symantec Advanced Secure Gateway S400-20 Firmware
Broadcom Symantec Advanced Secure Gateway S400-30 Firmware
Broadcom Symantec Advanced Secure Gateway S400-40 Firmware
Broadcom Symantec Advanced Secure Gateway 500-10 Firmware
Broadcom Symantec Advanced Secure Gateway S500-20 Firmware
6.5
CVSSv3
CVE-2019-18375
The ASG and ProxySG management consoles are susceptible to a session hijacking vulnerability. A remote attacker, with access to the appliance management interface, can hijack the session of a currently logged-in user and access the management console.
Broadcom Advanced Secure Gateway
Broadcom Symantec Proxysg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »