Unrated severityNVD Advisory· Published Oct 8, 2008· Updated Apr 23, 2026

CVE-2008-4485

Description

Cross-site scripting (XSS) vulnerability in the ICAP patience page in Blue Coat Security Gateway OS (SGOS) 4.2 before 4.2.9, 5.2 before 5.2.5, and 5.3 before 5.3.1.7 allows remote attackers to inject arbitrary web script or HTML via the URL.

Affected products

Bluecoat/Security Gateway Os3 versions
cpe:2.3:o:bluecoat:security_gateway_os:4.2:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:bluecoat:security_gateway_os:4.2:*:*:*:*:*:*:*
- cpe:2.3:o:bluecoat:security_gateway_os:5.2:*:*:*:*:*:*:*
- cpe:2.3:o:bluecoat:security_gateway_os:5.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/32122nvdVendor Advisory
www.bluecoat.com/support/securityadvisories/icap_patiencenvdVendor Advisory
marc.infonvd
marc.infonvd
securityreason.com/securityalert/4367nvd
www.securityfocus.com/bid/31543nvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2008/2739nvd
exchange.xforce.ibmcloud.com/vulnerabilities/45625nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000