CVE-2021-30648
First published: Wed Jun 30 2021(Updated: )
The Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are susceptible to an authentication bypass vulnerability. An unauthenticated attacker can execute arbitrary CLI commands, view/modify the appliance configuration and policy, and shutdown/restart the appliance.
Credit: secure@symantec.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Broadcom ProxySG | >=6.5<6.5.10.16 | |
| Broadcom ProxySG | >=6.6<6.6.5.19 | |
| Broadcom ProxySG | >=6.7<6.7.5.12 | |
| Broadcom ProxySG | >=7.2<7.2.7.2 | |
| Broadcom ProxySG | >=7.3<7.3.3.3 | |
| Broadcom Symantec Advanced Secure Gateway s200-30 | >=6.6<6.7.4.17 | |
| Broadcom Symantec Advanced Secure Gateway s200-30 | >=6.7.5.0<6.7.5.12 | |
| Broadcom Symantec Advanced Secure Gateway s200-30 | >=7.2<7.2.7.2 | |
| Broadcom Symantec Advanced Secure Gateway s200-30 | >=7.3<7.3.3.3 | |
| Broadcom Symantec Advanced Secure Gateway | ||
| Broadcom Symantec Advanced Secure Gateway | >=6.6<6.7.4.17 | |
| Broadcom Symantec Advanced Secure Gateway | >=6.7.5.0<6.7.5.12 | |
| Broadcom Symantec Advanced Secure Gateway | >=7.2<7.2.7.2 | |
| Broadcom Symantec Advanced Secure Gateway | >=7.3<7.3.3.3 | |
| Broadcom Symantec Advanced Secure Gateway S200-40 Firmware | ||
| Broadcom Symantec Advanced Secure Gateway S400-20 | >=6.6<6.7.4.17 | |
| Broadcom Symantec Advanced Secure Gateway S400-20 | >=6.7.5.0<6.7.5.12 | |
| Broadcom Symantec Advanced Secure Gateway S400-20 | >=7.2<7.2.7.2 | |
| Broadcom Symantec Advanced Secure Gateway S400-20 | >=7.3<7.3.3.3 | |
| Broadcom Symantec Advanced Secure Gateway S400-20 | ||
| Broadcom Symantec Advanced Secure Gateway | >=6.6<6.7.4.17 | |
| Broadcom Symantec Advanced Secure Gateway | >=6.7.5.0<6.7.5.12 | |
| Broadcom Symantec Advanced Secure Gateway | >=7.2<7.2.7.2 | |
| Broadcom Symantec Advanced Secure Gateway | >=7.3<7.3.3.3 | |
| Broadcom Symantec Advanced Secure Gateway S400-30 | ||
| Broadcom Symantec Advanced Secure Gateway | >=6.6<6.7.4.17 | |
| Broadcom Symantec Advanced Secure Gateway | >=6.7.5.0<6.7.5.12 | |
| Broadcom Symantec Advanced Secure Gateway | >=7.2<7.2.7.2 | |
| Broadcom Symantec Advanced Secure Gateway | >=7.3<7.3.3.3 | |
| Broadcom Symantec Advanced Secure Gateway S400-40 Firmware | ||
| Symantec ProxySG firmware | >=6.6<6.7.4.17 | |
| Symantec ProxySG firmware | >=6.7.5.0<6.7.5.12 | |
| Symantec ProxySG firmware | >=7.2<7.2.7.2 | |
| Symantec ProxySG firmware | >=7.3<7.3.3.3 | |
| Broadcom Symantec Advanced Secure Gateway 500-10 Firmware | ||
| Broadcom Symantec Advanced Secure Gateway S500-20 Firmware | >=6.6<6.7.4.17 | |
| Broadcom Symantec Advanced Secure Gateway S500-20 Firmware | >=6.7.5.0<6.7.5.12 | |
| Broadcom Symantec Advanced Secure Gateway S500-20 Firmware | >=7.2<7.2.7.2 | |
| Broadcom Symantec Advanced Secure Gateway S500-20 Firmware | >=7.3<7.3.3.3 | |
| Broadcom Symantec Advanced Secure Gateway S500-20 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-30648?
CVE-2021-30648 refers to an authentication bypass vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles.
Who is affected by CVE-2021-30648?
Users of Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are affected by CVE-2021-30648.
What is the severity of CVE-2021-30648?
CVE-2021-30648 has a severity rating of 9.8, which is considered critical.
How can an attacker exploit CVE-2021-30648?
An unauthenticated attacker can exploit CVE-2021-30648 by executing arbitrary CLI commands, modifying the appliance configuration and policy, and shutting down/restarting the appliance.
Is there a fix for CVE-2021-30648?
Yes, it is recommended to update the affected software to versions that are not vulnerable. Refer to the vendor's security advisory for specific details and patches.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/references
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/broadcom
- canonical/broadcom proxysg
- version/broadcom proxysg/6.5
- version/broadcom proxysg/6.6
- version/broadcom proxysg/6.7
- version/broadcom proxysg/7.2
- version/broadcom proxysg/7.3
- canonical/broadcom symantec advanced secure gateway s200-30
- version/broadcom symantec advanced secure gateway s200-30/6.6
- version/broadcom symantec advanced secure gateway s200-30/6.7.5.0
- version/broadcom symantec advanced secure gateway s200-30/7.2
- version/broadcom symantec advanced secure gateway s200-30/7.3
- canonical/broadcom symantec advanced secure gateway
- version/broadcom symantec advanced secure gateway/6.6
- version/broadcom symantec advanced secure gateway/6.7.5.0
- version/broadcom symantec advanced secure gateway/7.2
- version/broadcom symantec advanced secure gateway/7.3
- canonical/broadcom symantec advanced secure gateway s200-40 firmware
- canonical/broadcom symantec advanced secure gateway s400-20
- version/broadcom symantec advanced secure gateway s400-20/6.6
- version/broadcom symantec advanced secure gateway s400-20/6.7.5.0
- version/broadcom symantec advanced secure gateway s400-20/7.2
- version/broadcom symantec advanced secure gateway s400-20/7.3
- canonical/broadcom symantec advanced secure gateway s400-30
- canonical/broadcom symantec advanced secure gateway s400-40 firmware
- canonical/symantec proxysg firmware
- version/symantec proxysg firmware/6.6
- version/symantec proxysg firmware/6.7.5.0
- version/symantec proxysg firmware/7.2
- version/symantec proxysg firmware/7.3
- canonical/broadcom symantec advanced secure gateway 500-10 firmware
- canonical/broadcom symantec advanced secure gateway s500-20 firmware
- version/broadcom symantec advanced secure gateway s500-20 firmware/6.6
- version/broadcom symantec advanced secure gateway s500-20 firmware/6.7.5.0
- version/broadcom symantec advanced secure gateway s500-20 firmware/7.2
- version/broadcom symantec advanced secure gateway s500-20 firmware/7.3