Unrated severityNVD Advisory· Published Feb 2, 2015· Updated Jun 17, 2026
CVE-2015-1454
CVE-2015-1454
Description
Blue Coat ProxyClient before 3.3.3.3 and 3.4.x before 3.4.4.10 and Unified Agent before 4.1.3.151952 does not properly validate certain certificates, which allows man-in-the-middle attackers to spoof ProxySG Client Managers, and consequently modify configurations and execute arbitrary software updates, via a crafted certificate.
Affected products
4cpe:2.3:a:bluecoat:proxyclient:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:bluecoat:proxyclient:*:*:*:*:*:*:*:*range: >=3.3,<3.3.3.3
- (no CPE)range: <3.3.3.3 || >=3.4.0 <3.4.4.10
cpe:2.3:a:bluecoat:unified_agent:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:bluecoat:unified_agent:*:*:*:*:*:*:*:*range: <=4.1.3
- (no CPE)range: <4.1.3.151952
Patches
Vulnerability mechanics
References
2- secunia.com/advisories/62617nvdThird Party Advisory
- bto.bluecoat.com/security-advisory/sa89nvdVendor Advisory
News mentions
0No linked articles in our index yet.