GCVE - cpe:2.3:a:symantec_corporation:asg:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:symantec_corporation:asg:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Symantec Corporation (`1f133db6-919e-5a9d-990b-7fae5ff12390`)
Product	Asg (`9d09a23f-946b-5bce-a807-1ce81fd80889`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2016-9100`	vulnerable	2026-06-03 14:36:15.574357	Details available Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.13, and ProxySG 6.7 prior to 6.7.3.1 are susceptible to an information disclosure vulnerability. An attacker with local access to the client host of an authenticated administrator user can, under certain circumstances, obtain sensitive authentication credential information. Published: 2017-05-11T14:01:00.000Z Updated: 2024-09-16T20:42:42.195Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1040138 https://www.symantec.com/security-center/network-protection-security-advisories/SA155 http://www.securityfocus.com/bid/102454	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-9099`	vulnerable	2026-06-03 14:36:15.572221	Details available Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 prior to 6.7.2.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6, and ProxySG 6.7 prior to 6.7.2.1 are susceptible to an open redirection vulnerability. A remote attacker can use a crafted management console URL in a phishing attack to redirect the target user to a malicious web site. Published: 2017-05-11T14:01:00.000Z Updated: 2024-09-16T22:40:30.815Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/102455 http://www.securitytracker.com/id/1040138 https://www.symantec.com/security-center/network-protection-security-advisories/SA155	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-10257`	vulnerable	2026-06-03 14:35:23.726123	Details available The Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 (prior to 6.7.2.1), ProxySG 6.5 (prior to 6.5.10.6), ProxySG 6.6, and ProxySG 6.7 (prior to 6.7.2.1) management console is susceptible to a reflected XSS vulnerability. A remote attacker can use a crafted management console URL in a phishing attack to inject arbitrary JavaScript code into the management console web client application. This is a separate vulnerability from CVE-2016-10256. Published: 2018-01-10T02:00:00.000Z Updated: 2024-09-16T18:39:51.797Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1040138 https://www.symantec.com/security-center/network-protection-security-advisories/SA155 http://www.securityfocus.com/bid/102447	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.