Vulnerability Description
The caching feature in SGOS in Blue Coat ProxySG 5.5 through 5.5.11.3, 6.1 through 6.1.6.3, 6.2 through 6.2.15.3, 6.4 through 6.4.6.1, and 6.3 and 6.5 before 6.5.4 allows remote authenticated users to bypass intended access restrictions during a time window after account deletion or modification by leveraging knowledge of previously valid credentials.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bluecoat | Proxysgos | >= 5.5, <= 5.5.11.3 |
Related Weaknesses (CWE)
References
- http://www.kb.cert.org/vuls/id/221620US Government Resource
- https://kb.bluecoat.com/index?page=content&id=SA77Vendor Advisory
- http://www.kb.cert.org/vuls/id/221620US Government Resource
- https://kb.bluecoat.com/index?page=content&id=SA77Vendor Advisory
FAQ
What is CVE-2014-2033?
CVE-2014-2033 is a vulnerability with a CVSS score of 7.9 (HIGH). The caching feature in SGOS in Blue Coat ProxySG 5.5 through 5.5.11.3, 6.1 through 6.1.6.3, 6.2 through 6.2.15.3, 6.4 through 6.4.6.1, and 6.3 and 6.5 before 6.5.4 allows remote authenticated users to...
How severe is CVE-2014-2033?
CVE-2014-2033 has been rated HIGH with a CVSS base score of 7.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-2033?
Check the references section above for vendor advisories and patch information. Affected products include: Bluecoat Proxysgos.