📦

advanced_secure_gateway

Vendor: bluecoat

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 1 Remote Access

Total CVEs 36 Total Indexed

Avg. EPSS 12.50% Exploit Prob.

Latest CVE CVE-2016-6594 Jun 08

Security Vulnerability Index

Page 1 / 4

7.5 CVSS

CVE-2016-6594

Blue Coat Advanced Secure Gateway 6.6, CacheFlow 3.4, ProxySG 6.5 and 6.6 allows remote attackers to bypass blocked requests, user authentication, and payload scanning.

EPSS: 0.73%

Severity: HIGH

Jun 08, 2017

7.2 CVSS

CVE-2016-9091

RCE Exploit Found

Blue Coat Advanced Secure Gateway (ASG) 6.6 before 6.6.5.4 and Content Analysis System (CAS) 1.3 before 1.3.7.4 are susceptible to an OS command injection vulnerability. An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges.

EPSS: 36.51%

Severity: HIGH

Apr 05, 2017

7.4 CVSS

CVE-2015-8597

Open redirect vulnerability in Blue Coat ProxySG 6.5 before 6.5.8.8 and 6.6 and Advanced Secure Gateway (ASG) 6.6 might allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a base64-encoded URL in conjunction with a "clear text" one in a coaching page, as demonstrated by "http://www.%humbug-URL%.local/bluecoat-splash-API?%BASE64-URL%."

EPSS: 0.25%

Severity: HIGH

Jan 08, 2016

Displaying 3 of 36 Total Entries

1 2 3 4

Total 4 Sections