CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-36807
https://notcve.org/view.php?id=CVE-2021-36807
26 Nov 2021 — An authenticated user could potentially execute code via an SQLi vulnerability in the user portal of SG UTM before version 9.708 MR8. Un usuario autenticado podría potencialmente ejecutar código por medio de una vulnerabilidad SQLi en el portal de usuario de SG UTM versiones anteriores a 9.708 MR8 • https://www.sophos.com/en-us/security-advisories/sophos-sa-20211126-sg-sqli • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 4.4EPSS: 0%CPEs: 3EXPL: 0CVE-2021-25269
https://notcve.org/view.php?id=CVE-2021-25269
26 Nov 2021 — A local administrator could prevent the HMPA service from starting despite tamper protection using an unquoted service path vulnerability in the HMPA component of Sophos Intercept X Advanced and Sophos Intercept X Advanced for Server before version 2.0.23, as well as Sophos Exploit Prevention before version 3.8.3. Un administrador local podría evitar que el servicio HMPA sea iniciado a pesar de la protección contra manipulaciones mediante una vulnerabilidad de ruta de servicio no citada en el componente HMP... • https://www.sophos.com/en-us/security-advisories/sophos-sa-20211126-ixa-hmpa-local-dos • CWE-428: Unquoted Search Path or Element •
CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 1CVE-2021-36808
https://notcve.org/view.php?id=CVE-2021-36808
30 Oct 2021 — A local attacker could bypass the app password using a race condition in Sophos Secure Workspace for Android before version 9.7.3115. Un atacante local podría omitir la contraseña de la aplicación mediante una condición de carrera en Sophos Secure Workspace para Android antes de la versión 9.7.3115 • https://github.com/ctuIhu/CVE-2021-36808 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 6.0EPSS: 0%CPEs: 1EXPL: 0CVE-2021-25271
https://notcve.org/view.php?id=CVE-2021-25271
07 Oct 2021 — A local attacker could read or write arbitrary files with administrator privileges in HitmanPro before version Build 318. Un atacante local podría leer o escribir archivos arbitrarios con privilegios de administrador en HitmanPro versiones anteriores a Build 318 • https://www.sophos.com/en-us/security-advisories/sophos-sa-20211007-hmp-lpe •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2021-25270
https://notcve.org/view.php?id=CVE-2021-25270
07 Oct 2021 — A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901. Un atacante local podría ejecutar código arbitrario con privilegios de administrador en HitmanPro.Alert versiones anteriores a Build 901 • https://www.sophos.com/en-us/security-advisories/sophos-sa-20211007-hmpa-lpe •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-25273
https://notcve.org/view.php?id=CVE-2021-25273
29 Jul 2021 — Stored XSS can execute as administrator in quarantined email detail view in Sophos UTM before version 9.706. Una vulnerabilidad de tipo XSS almacenado puede ejecutarse como administrador en la visualización de detalles del correo electrónico en cuarentena en Sophos UTM versiones anteriores a 9.706 • http://seclists.org/fulldisclosure/2021/Dec/3 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2021-25264
https://notcve.org/view.php?id=CVE-2021-25264
17 May 2021 — In multiple versions of Sophos Endpoint products for MacOS, a local attacker could execute arbitrary code with administrator privileges. En múltiples versiones de los productos Sophos Endpoint para MacOS, un atacante local podría ejecutar código arbitrario con privilegios de administrador • https://community.sophos.com/b/security-blog •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-25265
https://notcve.org/view.php?id=CVE-2021-25265
22 Mar 2021 — A malicious website could execute code remotely in Sophos Connect Client before version 2.1. Un sitio web malicioso podría ejecutar código remotamente en Sophos Connect Client versiones anteriores a 2.1 • https://community.sophos.com/b/security-blog •
CVSS: 9.8EPSS: 12%CPEs: 1EXPL: 0CVE-2020-29574 – CyberoamOS (CROS) SQL Injection Vulnerability
https://notcve.org/view.php?id=CVE-2020-29574
11 Dec 2020 — An SQL injection vulnerability in the WebAdmin of Cyberoam OS through 2020-12-04 allows unauthenticated attackers to execute arbitrary SQL statements remotely. Una vulnerabilidad de inyección SQL en el WebAdmin de Cyberoam OS versiones hasta 04-12-2020, permite a atacantes no autenticados ejecutar sentencias SQL arbitrarias remotamente CyberoamOS (CROS) contains a SQL injection vulnerability in the WebAdmin that allows an unauthenticated attacker to execute arbitrary SQL statements remotely. • https://www.bleepingcomputer.com/news/security/sophos-fixes-sql-injection-vulnerability-in-their-cyberoam-os • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 10.0EPSS: 94%CPEs: 6EXPL: 7CVE-2020-25223 – Sophos SG UTM Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-25223
25 Sep 2020 — A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM before v9.705 MR5, v9.607 MR7, and v9.511 MR11 Se presenta una vulnerabilidad de ejecución de código remota en WebAdmin de Sophos SG UTM versiones anteriores a v9.705 MR5, v9.607 MR7 y v9.511 MR11 A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM. • https://packetstorm.news/files/id/164697 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •