RSS   Vulnerabilities for 'Advanced secure gateway'   RSS

2022-07-07
 
CVE-2021-46825

CWE-287
 

 
Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to an HTTP desync vulnerability. When a remote unauthenticated attacker and other web clients communicate through the proxy with the same web server, the attacker can send crafted HTTP requests and cause the proxy to forward web server responses to unintended clients. Severity/CVSSv3: High / 8.1 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

 

 >>> Vendor: Broadcom 39 Products
Proxysg
Bluetooth stack
Bcmwl5.sys wireless device driver
Widcomm bluetooth
Broadcom
Broadcom linux
Bcm4325
Bcm4329
Xcom data transport
Pipa c211 web interface
Pipa c211
Advanced secure gateway
Tcpreplay
Unified infrastructure management
Bcm4339 soc firmware
Hardmac wi-fi soc firmware
Bcm43xx wi-fi chipset firmware
Bcm4355c0 firmware
Ca api developer portal
Ca identity governance
Brocade network advisor
Bcm4335c0 firmware
Bcm43438a1 firmware
Ca client automation
Ca workload automation ae
Brocade sannav
Ca automic dollar universe
Ca automic sysload
Brcmfmac driver
Symantec messaging gateway
Sannav
Bcm2711
Brocade fabric
Symantec proxysg
Emulex hba manager
Netmaster file transfer management
Netmaster network management for tcp\/ip
Ca harvest software change manager
Fabric operating system


Copyright 2024, cxsecurity.com

 

Back to Top