GCVE - cpe:2.3:h:blue_coat:ssl_visibility_appliance

Approved changes feed: RSS · Atom

cpe:2.3:h:blue_coat:ssl_visibility_appliance_sv2800:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Blue Coat (`4446bea1-6f80-5368-8bc8-84bd822d3326`)
Product	Ssl Visibility Appliance Sv2800 (`6003af89-6d5c-50d9-a8a5-64f05c57d464`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2015-4138`	not_vulnerable	2026-06-08 05:06:39.228045	db.gcve.eu details are currently unavailable. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-2855`	not_vulnerable	2026-06-08 05:06:36.044998	Details available The WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 does not set the secure flag for the administrator's cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session, a different vulnerability than CVE-2015-4138. Published: 2015-05-30T19:00:00.000Z Updated: 2024-08-06T05:24:39.051Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/498348 https://bto.bluecoat.com/security-advisory/sa96 http://www.securityfocus.com/bid/74921	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-2854`	not_vulnerable	2026-06-08 05:06:36.044482	Details available The WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 does not send a restrictive X-Frame-Options HTTP header, which allows remote attackers to conduct clickjacking attacks via vectors involving an IFRAME element. Published: 2015-05-30T19:00:00.000Z Updated: 2024-08-06T05:24:39.035Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/498348 https://bto.bluecoat.com/security-advisory/sa96 http://www.securityfocus.com/bid/74921	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-2853`	not_vulnerable	2026-06-08 05:06:36.043948	Details available Session fixation vulnerability in the WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 allows remote attackers to hijack web sessions by providing a session ID. Published: 2015-05-30T19:00:00.000Z Updated: 2024-08-06T05:24:39.112Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/498348 https://bto.bluecoat.com/security-advisory/sa96 http://www.securityfocus.com/bid/74921	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-2852`	not_vulnerable	2026-06-08 05:06:36.040205	Details available Cross-site request forgery (CSRF) vulnerability in the WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 allows remote attackers to hijack the authentication of administrators. Published: 2015-05-30T19:00:00.000Z Updated: 2024-08-06T05:24:38.962Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/498348 https://bto.bluecoat.com/security-advisory/sa96 http://www.securityfocus.com/bid/74921	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Ssl Visibility Appliance Sv2800

PURL mappings

Vulnerability references

Contribute