Unrated severityNVD Advisory· Published Nov 3, 2007· Updated Apr 23, 2026

CVE-2007-5796

Description

Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG before 4.2.6.1, and 5.x before 5.2.2.5, allows remote attackers to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.

Affected products

Symantec/Proxysg Firmware
cpe:2.3:o:symantec:proxysg_firmware:*:*:*:*:*:*:*:*
Range: <4.2.6.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.bluecoat.com/support/securityadvisories/advisory_cross-site_scripting_vulnerabilitynvdPatchVendor Advisory
secunia.com/advisories/27452nvdThird Party Advisory
www.securitytracker.com/idnvdThird Party AdvisoryVDB Entry
www.vupen.com/english/advisories/2007/3678nvdThird Party Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/38213nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000