Vulnerabilities > CVE-2021-25265 - Unspecified vulnerability in Sophos Connect
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
A malicious website could execute code remotely in Sophos Connect Client before version 2.1.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 | |
OS | 1 |
References
- https://community.sophos.com/b/security-blog
- https://community.sophos.com/b/security-blog
- https://community.sophos.com/b/security-blog/posts/resolved-rce-in-sophos-connect-client-for-windows-cve-2021-25265
- https://community.sophos.com/b/security-blog/posts/resolved-rce-in-sophos-connect-client-for-windows-cve-2021-25265