High severity7.8NVD Advisory· Published May 11, 2017· Updated May 13, 2026

CVE-2016-9100

Description

Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.13, and ProxySG 6.7 prior to 6.7.3.1 are susceptible to an information disclosure vulnerability. An attacker with local access to the client host of an authenticated administrator user can, under certain circumstances, obtain sensitive authentication credential information.

Affected products

Broadcom Corporation/Advanced Secure Gateway
cpe:2.3:a:broadcom:advanced_secure_gateway:*:*:*:*:*:*:*:*
Range: >=6.6,<6.6.5.13
Broadcom Corporation/Symantec Proxysg
cpe:2.3:a:broadcom:symantec_proxysg:*:*:*:*:*:*:*:*
Range: >=6.5,<6.5.10.6
Symantec Corporation/ASGv5
Range: 6.6 prior to 6.6.5.13
Symantec Corporation/ProxySGv5
Range: 6.5 prior to 6.5.10.6

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/102454nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1040138nvdThird Party AdvisoryVDB Entry
www.symantec.com/security-center/network-protection-security-advisories/SA155nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000