\ Latest Vulnerabilities Affecting Sophos products | Vumetric Cyber Portal

Latest Vulnerabilities Affecting Sophos products

The following table presents a summary of the vulnerabilities affecting Sophos products. As of today, a total of 113 vulnerabilities were reported for this product, the risk distribution is:
  • 16 critical risk vulnerabilities
  • 26 high risk vulnerabilities
  • 65 medium risk vulnerabilities
  • 6 low risk vulnerabilities
The first vulnerability was reported on 2004-02-12, while the last reported vulnerability was reported on 2019-10-11. If you are aware of any missing vulnerabilities for this product, please contact us using the contact form.
Date CVE Title CVSS
2014-07-22 CVE-2014-2385 Cross-Site Scripting (XSS) vulnerability in Sophos Anti Virus 9.5.1 Medium
2014-06-25 CVE-2014-2005 Authentication Issues vulnerability in Sophos Enterprise Console 5.1/5.2/5.2.1 Medium
2014-04-11 CVE-2014-2850 OS Command Injections vulnerability in Sophos WEB Appliance and WEB Appliance Firmware High
2014-04-11 CVE-2014-2849 Permissions, Privileges, and Access Control vulnerability in Sophos WEB Appliance and WEB Appliance Firmware High
2014-03-18 CVE-2014-2537 Resource Management Errors vulnerability in Sophos Unified Threat Management and Unified Threat Management Software High
2014-03-18 CVE-2013-2641 Path Traversal vulnerability in Sophos WEB Appliance and WEB Appliance Firmware Medium
2014-03-18 CVE-2013-2643 Cross-Site Scripting (XSS) vulnerability in Sophos WEB Appliance and WEB Appliance Firmware Medium
2014-03-18 CVE-2013-2642 OS Command Injections vulnerability in Sophos WEB Appliance and WEB Appliance Firmware High
2014-02-10 CVE-2014-1213 Permissions, Privileges, and Access Control vulnerability in Sophos Scanning Engine and Sophos Anti Virus Medium
2013-09-23 CVE-2013-5932 Insufficient Information vulnerability in Sophos Unified Threat Management Software 9.007 High
2013-09-10 CVE-2013-4984 OS Command Injections vulnerability in Sophos WEB Appliance High
2013-09-10 CVE-2013-4983 OS Command Injections vulnerability in Sophos WEB Appliance Firmware High
2012-09-07 CVE-2010-5249 Unspecified vulnerability in Sophos Free Encryption and Safeguard Privatecrypto Medium
2012-08-29 CVE-2012-4736 Permissions, Privileges, and Access Control vulnerability in Sophos Safeguard Enterprise 6.0 Low
2012-08-25 CVE-2010-5177 Race Conditions vulnerability in Sophos Endpoint Security AND Control 9.0.5 Medium