CVE-2015-6547

The management console on Symantec Web Gateway (SWG) appliances with software before 5.2.2 DB 5.0.0.1277 allows remote authenticated users to execute arbitrary commands at boot time via unspecified vectors.

Published: Sep 20, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-6547
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 8.3
AV:N/AC:L/Au:M/C:C/I:C/A:C

CWEs:

CWE-77

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
symantec / web_gateway	-	5.2.2.x

http://www.securityfocus.com/bid/76730
http://www.securitytracker.com/id/1033625
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150916_00

Vulnerability Database

289,599

CVE-2015-6547