VYPR

Skyhigh Secure Web Gateway (swg)

by Skyhigh Security

CVEs (3)

  • CVE-2023-0214Jan 18, 2023
    risk 0.03cvss epss 0.02

    A cross-site scripting vulnerability in Skyhigh SWG in main releases 11.x prior to 11.2.6, 10.x prior to 10.2.17, and controlled release 12.x prior to 12.0.1 allows a remote attacker to craft SWG-specific internal requests with URL paths to any third-party website, causing…

  • CVE-2023-4400Sep 13, 2023
    risk 0.00cvss epss 0.00

    A password management vulnerability in Skyhigh Secure Web Gateway (SWG) in main releases 11.x prior to 11.2.14, 10.x prior to 10.2.25 and controlled release 12.x prior to 12.2.1, allows some authentication information stored in configuration files to be extracted through SWG…

  • CVE-2022-2310Jul 27, 2022
    risk 0.00cvss epss 0.01

    An authentication bypass vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.12, 9.x prior to 9.2.23, 8.x prior to 8.2.28, and controlled release 11.x prior to 11.2.1 allows a remote attacker to bypass authentication into the administration User Interface. This is…