VYPR
Vendor

Skyhigh

Products
3
CVEs
5
Across products
5
Status
Private

Products

3

Recent CVEs

5
  • CVE-2022-2310CriJul 27, 2022
    risk 0.65cvss 10.0epss 0.01

    An authentication bypass vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.12, 9.x prior to 9.2.23, 8.x prior to 8.2.28, and controlled release 11.x prior to 11.2.1 allows a remote attacker to bypass authentication into the administration User Interface. This is…

  • CVE-2023-0214MedJan 18, 2023
    risk 0.43cvss 6.1epss 0.02

    A cross-site scripting vulnerability in Skyhigh SWG in main releases 11.x prior to 11.2.6, 10.x prior to 10.2.17, and controlled release 12.x prior to 12.0.1 allows a remote attacker to craft SWG-specific internal requests with URL paths to any third-party website, causing…

  • CVE-2022-1254MedApr 20, 2022
    risk 0.40cvss 6.1epss 0.01

    A URL redirection vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.9, 9.x prior to 9.2.20, 8.x prior to 8.2.27, and 7.x prior to 7.8.2.31, and controlled release 11.x prior to 11.1.3 allows a remote attacker to redirect a user to a malicious website controlled by…

  • CVE-2024-0312MedMar 14, 2024
    risk 0.36cvss 5.5epss 0.00

    A malicious insider can uninstall Skyhigh Client Proxy without a valid uninstall password.

  • CVE-2024-0311MedMar 14, 2024
    risk 0.36cvss 5.5epss 0.00

    A malicious insider can bypass the existing policy of Skyhigh Client Proxy without a valid release code.