Latest Vulnerabilities Affecting Sophos products

Date CVE Title CVSS
2017-03-30 CVE-2017-6184 Command Injection vulnerability in Sophos WEB Appliance 4.3.1.1 Medium
2017-03-30 CVE-2017-6412 Session Fixation vulnerability in Sophos WEB Appliance 4.3.1.1 Medium
2017-03-30 CVE-2017-6183 Command Injection vulnerability in Sophos WEB Appliance 4.3.1.1 Medium
2017-01-28 CVE-2016-9554 Command Injection vulnerability in Sophos WEB Appliance 4.2.1.3 High
2017-01-28 CVE-2016-9553 Command Injection vulnerability in Sophos WEB Appliance 4.2.1.3 High
2016-10-03 CVE-2016-7397 Information Leak / Disclosure vulnerability in Sophos Unified Threat Management Software 9.4055 Low
2016-10-03 CVE-2016-7442 Information Leak / Disclosure vulnerability in Sophos Unified Threat Management Software 9.4055 Low
2016-08-10 CVE-2016-6597 Security Features vulnerability in Sophos Mobile Control EAS Proxy 3.5.0.3 Medium
2016-04-06 CVE-2016-3968 Cross-Site Scripting (XSS) vulnerability in Sophos Cyberoam Cr100Ing UTM Firmware and Cyberoam Cr35Ing UTM Firmware Medium
2016-02-18 CVE-2015-7547 Buffer Errors vulnerability in multiple products Medium
2016-02-17 CVE-2016-2046 Cross-Site Scripting (XSS) vulnerability in Sophos Unified Threat Management Software 9.351 Medium
2016-01-14 CVE-2016-0778 Buffer Errors vulnerability in multiple products Medium
2016-01-14 CVE-2015-8605 Input Validation vulnerability in ISC and Sophos products Medium
2016-01-14 CVE-2016-0777 Information Leak / Disclosure vulnerability in multiple products Medium
2014-07-22 CVE-2014-2385 Cross-Site Scripting (XSS) vulnerability in Sophos Anti Virus 9.5.1 Medium