CVE-2015-5693

The management console on Symantec Web Gateway (SWG) appliances with software before 5.2.2 DB 5.0.0.1277 allows remote authenticated users to execute arbitrary commands via vectors related to "traffic capture."

Published: Sep 20, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-5693
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.9
AV:N/AC:M/Au:M/C:C/I:C/A:C

CWEs:

CWE-94

Affected Software
References

Software	From	Fixed in
symantec / web_gateway	-	5.2.2.x

http://www.securityfocus.com/bid/76731
http://www.securitytracker.com/id/1033625
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150916_00
http://www.zerodayinitiative.com/advisories/ZDI-15-444/

Vulnerability Database

289,599

CVE-2015-5693