VYPR
Unrated severityNVD Advisory· Published Feb 2, 2015· Updated Jun 17, 2026

CVE-2015-1454

CVE-2015-1454

Description

Blue Coat ProxyClient before 3.3.3.3 and 3.4.x before 3.4.4.10 and Unified Agent before 4.1.3.151952 does not properly validate certain certificates, which allows man-in-the-middle attackers to spoof ProxySG Client Managers, and consequently modify configurations and execute arbitrary software updates, via a crafted certificate.

Affected products

4
  • cpe:2.3:a:bluecoat:proxyclient:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:bluecoat:proxyclient:*:*:*:*:*:*:*:*range: >=3.3,<3.3.3.3
    • (no CPE)range: <3.3.3.3 || >=3.4.0 <3.4.4.10
  • cpe:2.3:a:bluecoat:unified_agent:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:bluecoat:unified_agent:*:*:*:*:*:*:*:*range: <=4.1.3
    • (no CPE)range: <4.1.3.151952

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.