CVE-2018-5241

3 documents3 sources

Severity

9.8CRITICAL

EPSS

4.1%

top 11.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Corporation Advanced Secure Gateway (asg)Symantec Corporation Proxysg Broadcom Advanced Secure Gateway +1 more

Timeline

PublishedMay 29

Latest updateMay 13

Description

Symantec Advanced Secure Gateway (ASG) 6.6 and 6.7, and ProxySG 6.5, 6.6, and 6.7 are susceptible to a SAML authentication bypass vulnerability. The products can be configured with a SAML authentication realm to authenticate network users in intercepted proxy traffic. When parsing SAML responses, ASG and ProxySG incorrectly handle XML nodes with comments. A remote attacker can modify a valid SAML response without invalidating its cryptographic signature. This may allow the attacker to bypass use…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

▶NVDbroadcom/symantec_proxysg6.5, 6.6, 6.7+2

▶CVEListV5symantec_corporation/proxysg6.5, 6.6, 6.7+2

▶CVEListV5symantec_corporation/advanced_secure_gateway_(asg)6.6, 6.7+1

▶NVDbroadcom/advanced_secure_gateway6.6, 6.7+1

🔴Vulnerability Details

GHSA

GHSA-vf9c-2j2h-8frq: Symantec Advanced Secure Gateway (ASG) 6↗2022-05-13

▶

CVEList

CVE-2018-5241: Symantec Advanced Secure Gateway (ASG) 6↗2018-05-29

▶