\ Latest Vulnerabilities Affecting Sophos products | Vumetric Cyber Portal

Latest Vulnerabilities Affecting Sophos products

The following table presents a summary of the vulnerabilities affecting Sophos products. As of today, a total of 113 vulnerabilities were reported for this product, the risk distribution is:
  • 16 critical risk vulnerabilities
  • 26 high risk vulnerabilities
  • 65 medium risk vulnerabilities
  • 6 low risk vulnerabilities
The first vulnerability was reported on 2004-02-12, while the last reported vulnerability was reported on 2019-10-11. If you are aware of any missing vulnerabilities for this product, please contact us using the contact form.
Date CVE Title CVSS
2017-03-30 CVE-2017-6182 OS Command Injections vulnerability in Sophos WEB Appliance 4.3.1.1 High
2017-03-30 CVE-2017-6184 Command Injection vulnerability in Sophos WEB Appliance 4.3.1.1 Medium
2017-03-30 CVE-2017-6412 Session Fixation vulnerability in Sophos WEB Appliance 4.3.1.1 Medium
2017-03-30 CVE-2017-6183 Command Injection vulnerability in Sophos WEB Appliance 4.3.1.1 Medium
2017-01-28 CVE-2016-9554 Command Injection vulnerability in Sophos WEB Appliance 4.2.1.3 High
2017-01-28 CVE-2016-9553 Command Injection vulnerability in Sophos WEB Appliance 4.2.1.3 High
2016-10-03 CVE-2016-7397 Information Leak / Disclosure vulnerability in Sophos Unified Threat Management Software 9.4055 Low
2016-10-03 CVE-2016-7442 Information Leak / Disclosure vulnerability in Sophos Unified Threat Management Software 9.4055 Low
2016-08-10 CVE-2016-6597 Security Features vulnerability in Sophos Mobile Control EAS Proxy 3.5.0.3 Medium
2016-04-06 CVE-2016-3968 Cross-Site Scripting (XSS) vulnerability in Sophos Cyberoam Cr100Ing UTM Firmware and Cyberoam Cr35Ing UTM Firmware Medium
2016-02-18 CVE-2015-7547 Buffer Errors vulnerability in multiple products Medium
2016-02-17 CVE-2016-2046 Cross-Site Scripting (XSS) vulnerability in Sophos Unified Threat Management Software 9.351 Medium
2016-01-14 CVE-2015-8605 Input Validation vulnerability in ISC and Sophos products Medium
2016-01-14 CVE-2016-0778 Buffer Errors vulnerability in multiple products Medium
2016-01-14 CVE-2016-0777 Information Leak / Disclosure vulnerability in multiple products Medium