Skip to main content

Ssl Visibility Appliance Sv2800 Firmware

6 CVEs product

Monthly

CVE-2016-10259 MEDIUM This Month

Symantec SSL Visibility (SSLV) 3.8.4FC, 3.9, 3.10 before 3.10.4.1, and 3.11 before 3.11.3.1 is susceptible to a denial-of-service vulnerability that impacts the SSL servers for intercepted SSL. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Ssl Visibility Appliance Sv1800 Firmware Ssl Visibility Appliance Sv800 Firmware Ssl Visibility Appliance Sv3800 Firmware Ssl Visibility Appliance Sv2800 Firmware
NVD
CVSS 3.0
5.9
EPSS
0.5%
CVE-2015-4138 MEDIUM This Month

The WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 does not include the HTTPOnly flag in a Set-Cookie header for the. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Ssl Visibility Appliance Sv1800 Firmware Ssl Visibility Appliance Sv800 Firmware Ssl Visibility Appliance Sv3800 Firmware Ssl Visibility Appliance Sv2800 Firmware
NVD
CVSS 2.0
4.3
EPSS
1.8%
CVE-2015-2855 MEDIUM This Month

The WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 does not set the secure flag for the administrator's cookie in an https. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Ssl Visibility Appliance Sv800 Firmware Ssl Visibility Appliance Sv1800 Firmware Ssl Visibility Appliance Sv3800 Firmware Ssl Visibility Appliance Sv2800 Firmware
NVD
CVSS 2.0
4.3
EPSS
1.8%
CVE-2015-2854 MEDIUM This Month

The WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 does not send a restrictive X-Frame-Options HTTP header, which allows. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Ssl Visibility Appliance Sv800 Firmware Ssl Visibility Appliance Sv1800 Firmware Ssl Visibility Appliance Sv2800 Firmware Ssl Visibility Appliance Sv3800 Firmware
NVD
CVSS 2.0
4.3
EPSS
2.6%
CVE-2015-2853 MEDIUM This Month

Session fixation vulnerability in the WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 allows remote attackers to hijack web. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Ssl Visibility Appliance Sv3800 Firmware Ssl Visibility Appliance Sv2800 Firmware Ssl Visibility Appliance Sv1800 Firmware Ssl Visibility Appliance Sv800 Firmware
NVD
CVSS 2.0
6.8
EPSS
1.5%
CVE-2015-2852 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in the WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 allows remote attackers. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Ssl Visibility Appliance Sv2800 Firmware Ssl Visibility Appliance Sv1800 Firmware Ssl Visibility Appliance Sv3800 Firmware Ssl Visibility Appliance Sv800 Firmware
NVD
CVSS 2.0
4.3
EPSS
0.4%
EPSS 0% CVSS 5.9
MEDIUM This Month

Symantec SSL Visibility (SSLV) 3.8.4FC, 3.9, 3.10 before 3.10.4.1, and 3.11 before 3.11.3.1 is susceptible to a denial-of-service vulnerability that impacts the SSL servers for intercepted SSL. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Ssl Visibility Appliance Sv1800 Firmware Ssl Visibility Appliance Sv800 Firmware +2
NVD
EPSS 2% CVSS 4.3
MEDIUM This Month

The WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 does not include the HTTPOnly flag in a Set-Cookie header for the. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Ssl Visibility Appliance Sv1800 Firmware Ssl Visibility Appliance Sv800 Firmware +2
NVD
EPSS 2% CVSS 4.3
MEDIUM This Month

The WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 does not set the secure flag for the administrator's cookie in an https. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Ssl Visibility Appliance Sv800 Firmware Ssl Visibility Appliance Sv1800 Firmware +2
NVD
EPSS 3% CVSS 4.3
MEDIUM This Month

The WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 does not send a restrictive X-Frame-Options HTTP header, which allows. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Ssl Visibility Appliance Sv800 Firmware Ssl Visibility Appliance Sv1800 Firmware +2
NVD
EPSS 2% CVSS 6.8
MEDIUM This Month

Session fixation vulnerability in the WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 allows remote attackers to hijack web. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Ssl Visibility Appliance Sv3800 Firmware Ssl Visibility Appliance Sv2800 Firmware +2
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in the WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 allows remote attackers. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Ssl Visibility Appliance Sv2800 Firmware Ssl Visibility Appliance Sv1800 Firmware +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy