CVE-2013-4673
Severity
5.8MEDIUM
EPSS
3.3%
top 12.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedAug 1
Latest updateMay 17
Description
The management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 does not properly implement RADIUS authentication, which allows remote attackers to execute arbitrary code by leveraging access to the login prompt.
CVSS vector
AV:A/AC:L/C:P/I:P/A:PExploitability: 6.5 | Impact: 6.4