CVE-2021-46825 — HTTP Request Smuggling in Advanced Secure Gateway

CWE-444 — HTTP Request Smuggling CWE-287 — Improper Authentication3 documents3 sources

Severity

9.1CRITICALNVD

EPSS

0.3%

top 49.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom Advanced Secure Gateway Broadcom Proxysg

Timeline

PublishedJul 7

Latest updateJul 8

Description

Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to an HTTP desync vulnerability. When a remote unauthenticated attacker and other web clients communicate through the proxy with the same web server, the attacker can send crafted HTTP requests and cause the proxy to forward web server responses to unintended clients. Severity/CVSSv3: High / 8.1 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NExploitability: 3.9 | Impact: 5.2

Affected Packages2 packages

▶NVDbroadcom/proxysg6.7, 7.3+1

▶NVDbroadcom/advanced_secure_gateway6.7, 7.3+1

🔴Vulnerability Details

GHSA

GHSA-2h97-8375-29wg: Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to an HTTP desync vulnerability↗2022-07-08

▶

CVEList

CVE-2021-46825: Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to an HTTP desync vulnerability↗2022-07-07

▶