Vulnerabilities > Sophos > Hitmanpro Alert

DATE CVE VULNERABILITY TITLE RISK
2021-10-08 CVE-2021-25270 Unspecified vulnerability in Sophos Hitmanpro.Alert 3.7.6.744/861
A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901.
local
low complexity
sophos
7.2
2020-03-02 CVE-2020-9540 Improper Privilege Management vulnerability in Sophos Hitmanpro.Alert 3.7.6.744
Sophos HitmanPro.Alert before build 861 allows local elevation of privilege.
local
low complexity
sophos CWE-269
4.6
2018-10-25 CVE-2018-3971 Write-what-where Condition vulnerability in Sophos Hitmanpro.Alert 3.7.6.744
An exploitable arbitrary write vulnerability exists in the 0x2222CC IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744.
local
low complexity
sophos CWE-123
7.8
2018-10-25 CVE-2018-3970 Use of Uninitialized Resource vulnerability in Sophos Hitmanpro.Alert 3.7.6.744
An exploitable memory disclosure vulnerability exists in the 0x222000 IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744.
local
low complexity
sophos CWE-908
5.5