CVSS: 4.4EPSS: 0%CPEs: 3EXPL: 0CVE-2021-25269
https://notcve.org/view.php?id=CVE-2021-25269
A local administrator could prevent the HMPA service from starting despite tamper protection using an unquoted service path vulnerability in the HMPA component of Sophos Intercept X Advanced and Sophos Intercept X Advanced for Server before version 2.0.23, as well as Sophos Exploit Prevention before version 3.8.3. Un administrador local podría evitar que el servicio HMPA sea iniciado a pesar de la protección contra manipulaciones mediante una vulnerabilidad de ruta de servicio no citada en el componente HMPA de Sophos Intercept X Advanced y Sophos Intercept X Advanced for Server versiones anteriores a 2.0.23, así como Sophos Exploit Prevention versiones anteriores a 3.8.3 • https://www.sophos.com/en-us/security-advisories/sophos-sa-20211126-ixa-hmpa-local-dos • CWE-428: Unquoted Search Path or Element •