Vulnerabilities > Sophos
|2022-05-05||CVE-2021-25267|| Cross-site Scripting vulnerability in Sophos Firewall Firmware |
Multiple XSS vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 19.0 GA.
| 8.5 |
|2022-05-05||CVE-2021-25268|| Cross-site Scripting vulnerability in Sophos Firewall Firmware |
Multiple XSS vulnerabilities in Webadmin allow for privilege escalation from MySophos admin to SFOS admin in Sophos Firewall older than version 19.0 GA.
| 6.0 |
|2022-04-27||CVE-2021-25266|| Insecure Storage of Sensitive Information vulnerability in Sophos Authenticator and Intercept X |
An insecure data storage vulnerability allows a physical attacker with root privileges to retrieve TOTP secret keys from unlocked phones in Sophos Authenticator for Android version 3.4 and older, and Intercept X for Mobile (Android) before version 9.7.3495.
| 2.1 |
|2022-03-29||CVE-2022-0331|| Information Exposure vulnerability in Sophos Sfos |
An information disclosure vulnerability in Webadmin allows an unauthenticated remote attacker to read the device serial number in Sophos Firewall version v18.5 MR2 and older.
| 5.0 |
|2022-03-25||CVE-2022-1040|| Improper Authentication vulnerability in Sophos Sfos |
An authentication bypass vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v18.5 MR3 and older.
| 7.5 |
|2022-03-22||CVE-2022-0386|| SQL Injection vulnerability in Sophos Unified Threat Management |
A post-auth SQL injection vulnerability in the Mail Manager potentially allows an authenticated attacker to execute code in Sophos UTM before version 9.710.
| 6.5 |
|2022-03-22||CVE-2022-0652|| Improper Restriction of Excessive Authentication Attempts vulnerability in Sophos Unified Threat Management |
Confd log files contain local users', including rootâ€™s, SHA512crypt password hashes with insecure access permissions.
| 2.1 |
|2022-03-08||CVE-2021-36809|| Improper Privilege Management vulnerability in Sophos SSL VPN Client |
A local attacker can overwrite arbitrary files on the system with VPN client logs using administrator privileges, potentially resulting in a denial of service and data loss, in all versions of Sophos SSL VPN client.
| 3.6 |
|2021-11-26||CVE-2021-25269|| Unquoted Search Path or Element vulnerability in Sophos products |
A local administrator could prevent the HMPA service from starting despite tamper protection using an unquoted service path vulnerability in the HMPA component of Sophos Intercept X Advanced and Sophos Intercept X Advanced for Server before version 2.0.23, as well as Sophos Exploit Prevention before version 3.8.3.
| 2.1 |
|2021-11-26||CVE-2021-36807|| SQL Injection vulnerability in Sophos Unified Threat Management Up2Date |
An authenticated user could potentially execute code via an SQLi vulnerability in the user portal of SG UTM before version 9.708 MR8.
| 6.5 |