← Back

CVE-2015-2853

nvd nist
Published: May 30, 2015Modified: May 6, 2026

JSON object

Loading...
6.8
Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
Exploitability: 8.6 / Impact: 6.4
Source: NVD

Description

Session fixation vulnerability in the WebUI component in Blue Coat SSL Visibility Appliance SV800, SV1800, SV2800, and SV3800 3.6.x through 3.8.x before 3.8.4 allows remote attackers to hijack web sessions by providing a session ID.

Affected (4)

Blue Coat
4 products
Ssl Visibility Appliance Sv3800 Firmware
Ssl Visibility Appliance Sv2800 Firmware
Ssl Visibility Appliance Sv1800 Firmware
Ssl Visibility Appliance Sv800 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ssl Visibility Appliance Sv3800 Firmware
Up to 3.8.3
Running on/withPlatform Versions
Blue Coat
Ssl Visibility Appliance Sv3800
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ssl Visibility Appliance Sv2800 Firmware
Up to 3.8.3
Running on/withPlatform Versions
Blue Coat
Ssl Visibility Appliance Sv2800
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ssl Visibility Appliance Sv1800 Firmware
Up to 3.8.3
Running on/withPlatform Versions
Blue Coat
Ssl Visibility Appliance Sv1800
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ssl Visibility Appliance Sv800 Firmware
Up to 3.8.3
Running on/withPlatform Versions
Blue Coat
Ssl Visibility Appliance Sv800
All versions

References (6)

Source: cret@cert.org
US Government Resource
Source: cret@cert.org
Source: cret@cert.org
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.