Vulnerabilities (CVE)

Filtered by vendor Broadcom Subscribe
Filtered by product Proxysg
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-46825 1 Broadcom 2 Advanced Secure Gateway, Proxysg 2024-11-21 6.4 MEDIUM 9.1 CRITICAL
Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to an HTTP desync vulnerability. When a remote unauthenticated attacker and other web clients communicate through the proxy with the same web server, the attacker can send crafted HTTP requests and cause the proxy to forward web server responses to unintended clients. Severity/CVSSv3: High / 8.1 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N