CVE-2021-25264
https://notcve.org/view.php?id=CVE-2021-25264
In multiple versions of Sophos Endpoint products for MacOS, a local attacker could execute arbitrary code with administrator privileges. En múltiples versiones de los productos Sophos Endpoint para MacOS, un atacante local podría ejecutar código arbitrario con privilegios de administrador • https://community.sophos.com/b/security-blog https://community.sophos.com/b/security-blog/posts/resolved-lpe-in-endpoint-for-macos-cve-2021-25264 •
CVE-2020-10947
https://notcve.org/view.php?id=CVE-2020-10947
Mac Endpoint for Sophos Central before 9.9.6 and Mac Endpoint for Sophos Home before 2.2.6 allow Privilege Escalation. Mac Endpoint para Sophos Central versiones anteriores a 9.9.6 y Mac Endpoint para Sophos Home versiones anteriores a 2.2.6, permiten una Escalada de Privilegios. • https://community.sophos.com/b/security-blog/posts/advisory-cve-2020-10947---sophos-anti-virus-for-macos-privilege-escalation https://www.sophos.com/en-us.aspx • CWE-59: Improper Link Resolution Before File Access ('Link Following') •