Описание
The caching feature in SGOS in Blue Coat ProxySG 5.5 through 5.5.11.3, 6.1 through 6.1.6.3, 6.2 through 6.2.15.3, 6.4 through 6.4.6.1, and 6.3 and 6.5 before 6.5.4 allows remote authenticated users to bypass intended access restrictions during a time window after account deletion or modification by leveraging knowledge of previously valid credentials.
Ссылки
- US Government Resource
- Vendor Advisory
- US Government Resource
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 5.5 (включая) до 5.5.11.3 (включая)Версия от 6.1 (включая) до 6.1.6.3 (включая)Версия от 6.2 (включая) до 6.2.15.3 (включая)Версия от 6.4 (включая) до 6.4.6.1 (включая)Версия от 6.5 (включая) до 6.5.4 (исключая)
Одно из
cpe:2.3:o:bluecoat:proxysgos:*:*:*:*:*:*:*:*
cpe:2.3:o:bluecoat:proxysgos:*:*:*:*:*:*:*:*
cpe:2.3:o:bluecoat:proxysgos:*:*:*:*:*:*:*:*
cpe:2.3:o:bluecoat:proxysgos:*:*:*:*:*:*:*:*
cpe:2.3:o:bluecoat:proxysgos:*:*:*:*:*:*:*:*
cpe:2.3:o:bluecoat:proxysgos:6.3:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00097
Низкий
7.9 High
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
The caching feature in SGOS in Blue Coat ProxySG 5.5 through 5.5.11.3, 6.1 through 6.1.6.3, 6.2 through 6.2.15.3, 6.4 through 6.4.6.1, and 6.3 and 6.5 before 6.5.4 allows remote authenticated users to bypass intended access restrictions during a time window after account deletion or modification by leveraging knowledge of previously valid credentials.
EPSS
Процентиль: 27%
0.00097
Низкий
7.9 High
CVSS2
Дефекты
CWE-264