CyberSec.Space Logo
Back to CVE Browser

CVE-2017-13677

HIGH
7.5
CVSS Severity Score
EPSS Score0.0930%
EPSS Percentile29.59th
PublishedApr 11, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

Denial-of-service (DoS) vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A remote attacker can use crafted HTTP/HTTPS requests to cause denial-of-service through management console application crashes.

Affected Platforms (CPE)

πŸ“¦
Broadcom

Advanced Secure Gateway

>= 6.6 and < 6.6.5.14
πŸ“¦
Broadcom

Advanced Secure Gateway

>= 6.7 and < 6.7.3.1
πŸ“¦
Broadcom

Symantec Proxysg

>= 6.5 and < 6.5.10.8
πŸ“¦
Broadcom

Symantec Proxysg

>= 6.6 and < 6.6.5.14
πŸ“¦
Broadcom

Symantec Proxysg

>= 6.7 and < 6.7.3.1

References & Advisories

πŸ”— http://www.securityfocus.com/bid/103685
πŸ”— http://www.securitytracker.com/id/1040757
πŸ”— https://www.symantec.com/security-center/network-protection-security-advisories/SA162
πŸ”— http://www.securityfocus.com/bid/103685
πŸ”— http://www.securitytracker.com/id/1040757
πŸ”— https://www.symantec.com/security-center/network-protection-security-advisories/SA162

Related Vulnerabilities

CVE-2016-36459.8

Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Da...

CVE-2021-306489.8

The Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are susceptible to an authentication bypass vulnera...

CVE-2018-52419.8

Symantec Advanced Secure Gateway (ASG) 6.6 and 6.7, and ProxySG 6.5, 6.6, and 6.7 are susceptible to a SAML authentication bypass ...

CVE-2021-468259.1

Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to an HTTP desync vulnerability. When a remote unauthenticated ...