Latest Vulnerabilities Affecting Sophos products

The following table presents a summary of the vulnerabilities affecting Sophos products. As of today, a total of 113 vulnerabilities were reported for this product, the risk distribution is:
  • 16 critical risk vulnerabilities
  • 26 high risk vulnerabilities
  • 65 medium risk vulnerabilities
  • 6 low risk vulnerabilities
The first vulnerability was reported on 2004-02-12, while the last reported vulnerability was reported on 2019-10-11. If you are aware of any missing vulnerabilities for this product, please contact us using the contact form.
Date CVE Title CVSS
2018-04-24 CVE-2016-8732 Permission Issues vulnerability in Sophos Invincea Dell Protected Workspace 5.1.122303 Medium
2018-04-05 CVE-2018-9233 Undefined vulnerability in Sophos Endpoint Protection 10.7 Low
2018-04-05 CVE-2018-4863 Security Features vulnerability in Sophos Endpoint Protection 10.7 Low
2018-02-02 CVE-2018-6318 Untrusted Search Path vulnerability in Sophos Tester 3.2.0.7 High
2018-02-02 CVE-2018-6319 NULL Pointer Dereference vulnerability in Sophos Tester 3.2.0.7 Medium
2018-01-26 CVE-2016-6217 Cross-Site Scripting (XSS) vulnerability in Linux and Sophos products Medium
2018-01-12 CVE-2017-18014 Cross-Site Scripting (XSS) vulnerability in Sophos Sfos 17.0 Medium
2017-09-19 CVE-2017-6315 Input Validation vulnerability in Sophos Astaro Security Gateway Firmware 7.500/7.506 High
2017-09-13 CVE-2017-6007 Buffer Errors vulnerability in Sophos Hitmanpro 3.7.20 Medium
2017-09-13 CVE-2017-6008 Buffer Errors vulnerability in Sophos Hitmanpro 3.7.20 Medium
2017-09-13 CVE-2017-7441 Buffer Errors vulnerability in Sophos Hitmanpro 3.7.20 High
2017-06-22 CVE-2012-6706 Integer Overflow or Wraparound vulnerability in Rarlab and Sophos products High
2017-06-09 CVE-2017-9523 Cross-Site Scripting (XSS) vulnerability in Sophos WEB Appliance 4.3.1.4 Medium
2017-06-07 CVE-2016-9834 Cross-Site Scripting (XSS) vulnerability in Sophos Cyberoam Firmware 10.6.4 Medium
2017-04-07 CVE-2016-7786 Permissions, Privileges, and Access Control vulnerability in Sophos Cyberoam Cr25Ing UTM Firmware 10.6.2 High