VULHUB ™

Blue Coat Systems Security Gateway OS (SGOS) 3.x devices are prone to a vulnerability that could cause the private encryption key to be disclosed to unauthorized parties. The issue reportedly occurs when the private key is imported through the web-based administrative interface. This will cause the private key and passphrase to logged in plaintext, potentially exposing this issue to other local users. It is also reported that certain administrative actions or configurations could also expose this information to other unauthorized parties, though specific details have not been publicized at this time.

Blue Coat Systems Security Gateway OS (SGOS) 3.x devices are prone to a vulnerability that could cause the private encryption key to be disclosed to unauthorized parties. The issue reportedly occurs when the private key is imported through the web-based administrative interface. This will cause the private key and passphrase to logged in plaintext, potentially exposing this issue to other local users. It is also reported that certain administrative actions or configurations could also expose this information to other unauthorized parties, though specific details have not been publicized at this time.