Unrated severityNVD Advisory· Published Aug 1, 2013· Updated Apr 29, 2026
CVE-2013-4672
CVE-2013-4672
Description
The management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 has an incorrect sudoers file, which allows local users to bypass intended access restrictions via a command.
Affected products
8cpe:2.3:a:symantec:web_gateway:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:symantec:web_gateway:*:*:*:*:*:*:*:*range: <=5.1
- cpe:2.3:a:symantec:web_gateway:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:web_gateway:5.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:web_gateway:5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:web_gateway:5.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:symantec:web_gateway:5.0.3.18:*:*:*:*:*:*:*
- cpe:2.3:h:symantec:web_gateway_appliance_8450:-:*:*:*:*:*:*:*
- cpe:2.3:h:symantec:web_gateway_appliance_8490:-:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- www.symantec.com/security_response/securityupdates/detail.jspnvdVendor Advisory
- osvdb.org/95695nvd
- packetstormsecurity.com/files/122556/Symantec-Web-Gateway-XSS-CSRF-SQL-Injection-Command-Injection.htmlnvd
- www.securityfocus.com/bid/61104nvd
- www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20130726-0_Symantec_Web_Gateway_Multiple_Vulnerabilities_v10.txtnvd
News mentions
0No linked articles in our index yet.