Medium severity4.8NVD Advisory· Published Apr 11, 2018· Updated Jun 17, 2026
CVE-2017-13678
CVE-2017-13678
Description
Stored XSS vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A malicious appliance administrator can inject arbitrary JavaScript code in the management console web client application.
Affected products
4- Symantec Corporation/Advanced Secure Gateway (ASG)v5Range: 6.6 prior to 6.6.5.14
- Symantec Corporation/ProxySGv5Range: 6.5 prior to 6.5.10.8
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/103685nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040757nvdThird Party AdvisoryVDB Entry
- www.symantec.com/security-center/network-protection-security-advisories/SA162nvdVendor Advisory
News mentions
0No linked articles in our index yet.