CVE-2010-5189 : Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 all

Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote authenticated users to execute arbitrary CLI commands by leveraging read-only administrator privileges and establishing an HTTPS session.

Published 2012-08-26 19:55:01

Updated 2012-08-27 22:19:10

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2010-5189

Probability of exploitation activity in the next 30 days: 0.23%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 60 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2010-5189

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2010-5189

CWE-264

Assigned by: nvd@nist.gov (Primary)

References for CVE-2010-5189

https://kb.bluecoat.com/index?page=content&id=SA45

Vendor Advisory

Products affected by CVE-2010-5189

Bluecoat » Proxysg
cpe:2.3:h:bluecoat:proxysg:*:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos
Versions up to, including, (<=) 4.3.4
cpe:2.3:o:bluecoat:sgos:*:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.1.2.1
cpe:2.3:o:bluecoat:sgos:4.1.2.1:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.3.4
cpe:2.3:o:bluecoat:sgos:4.2.3.4:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.1.2
cpe:2.3:o:bluecoat:sgos:4.2.1.2:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.5.1
cpe:2.3:o:bluecoat:sgos:4.2.5.1:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.6.4
cpe:2.3:o:bluecoat:sgos:4.2.6.4:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.7.1
cpe:2.3:o:bluecoat:sgos:4.2.7.1:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 5.5.4
cpe:2.3:o:bluecoat:sgos:5.5.4:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.3.7
cpe:2.3:o:bluecoat:sgos:4.2.3.7:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.3.12
cpe:2.3:o:bluecoat:sgos:4.2.3.12:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.3.21
cpe:2.3:o:bluecoat:sgos:4.2.3.21:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.3.26
cpe:2.3:o:bluecoat:sgos:4.2.3.26:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.2
cpe:2.3:o:bluecoat:sgos:4.2.2:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.3
cpe:2.3:o:bluecoat:sgos:4.2.3:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.5
cpe:2.3:o:bluecoat:sgos:4.2.5:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.2.1
cpe:2.3:o:bluecoat:sgos:4.2.2.1:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.1.6
cpe:2.3:o:bluecoat:sgos:4.2.1.6:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 5.2.2.4
cpe:2.3:o:bluecoat:sgos:5.2.2.4:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 6.1
cpe:2.3:o:bluecoat:sgos:6.1:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 5.4.5
cpe:2.3:o:bluecoat:sgos:5.4.5:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.2.2
cpe:2.3:o:bluecoat:sgos:4.2.2.2:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.4.1
cpe:2.3:o:bluecoat:sgos:4.2.4.1:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.6.1
cpe:2.3:o:bluecoat:sgos:4.2.6.1:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 4.2.6
cpe:2.3:o:bluecoat:sgos:4.2.6:*:*:*:*:*:*:*
Matching versions
Bluecoat » Sgos » Version: 3.2.6
cpe:2.3:o:bluecoat:sgos:3.2.6:*:*:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg9000-20 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg9000-20:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg9000-20 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg9000-20:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg9000-10 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg9000-10:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg9000-10 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg9000-10:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg810-20 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg810-20:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg810-20 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg810-20:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg810-10 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg810-10:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg810-10 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg810-10:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg510-10 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg510-10:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg510-10 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg510-10:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg810-25 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg810-25:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg810-25 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg810-25:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg510-25 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg510-25:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg510-25 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg510-25:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg510-20 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg510-20:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg510-20 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg510-20:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg510-5 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg510-5:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg210-10 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg210-10:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg210-10 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg210-10:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg210-5 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg210-5:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg210-5 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg210-5:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg9000-5 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg9000-5:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg9000-5 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg9000-5:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg210-25 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg210-25:-:-:full_proxy:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg210-25 » Version: N/A Acceleration Edition
cpe:2.3:h:bluecoat:proxysg_sg210-25:-:-:acceleration:*:*:*:*:*
Matching versions
Bluecoat » Proxysg Sg810-5 » Version: N/A Full Proxy Edition
cpe:2.3:h:bluecoat:proxysg_sg810-5:-:-:full_proxy:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2010-5189

Exploit prediction scoring system (EPSS) score for CVE-2010-5189

CVSS scores for CVE-2010-5189

CWE ids for CVE-2010-5189

References for CVE-2010-5189

Products affected by CVE-2010-5189