Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / sophos

sophos

173 tracked vulnerabilities.

CVE-2018-6319 MEDIUM

Sophos Tester Tool 3.2.0.7 Beta - Denial of Service via DeviceIoControl NULL Pointer Dereference

CVE-2018-6318 HIGH

Sophos Tester Tool 3.2.0.7 Beta - Untrusted Search Path via DLL Hijacking

CVE-2017-17023 HIGH

NCP Secure Entry Client 10.11 r32792 - Unauthenticated Arbitrary Code Execution via Insecure Update Metadata

CVE-2017-18014 MEDIUM

Sophos SFOS < 17.0.3 MR3 - Unauthenticated Stored Cross-Site Scripting via WAF Log User-Agent Parameter

CVE-2017-6315 CRITICAL

Astaro Security Gateway 7 - Remote Code Execution via index.plx Request

CVE-2017-7441 HIGH

Sophos SurfRight HitmanPro <3.7.20 Build 286 - Info Disclosure

CVE-2017-6008 HIGH

Sophos HitmanPro < 3.7.20 - Local Privilege Escalation via Malformed IOCTL Call

CVE-2017-6007 MEDIUM

Sophos HitmanPro < 3.7.20 - Kernel Pool Overflow via IOCTL Call

CVE-2017-9523 MEDIUM

Sophos Web Appliance < 4.3.2 - Cross-Site Scripting in FTP Redirect Page

CVE-2017-6412 HIGH

Sophos Web Appliance <4.3.1.2 - Session Fixation

CVE-2017-6184 MEDIUM

Sophos Web Appliance < 4.3.1.2 - Remote Command Injection via Report Token Parameter

CVE-2017-6183 HIGH

Sophos Web Appliance < 4.3.1.2 - Remote Command Injection via Active Directory Configuration Utility

CVE-2017-6182 CRITICAL

Sophos Web Appliance < 4.3.1.2 - Remote Command Injection via Report Generation Functions

CVE-2016-9038 HIGH

Invincea-X <6.1.3-24058 - Privilege Escalation

CVE-2016-8732 HIGH

Invincea Dell Protected Workspace <5.1.1-22303 - Privilege Escalation

CVE-2016-6217 MEDIUM

Sophos PureMessage for UNIX <6.3.2 - XSS

CVE-2016-9834 MEDIUM

Sophos Cyberoam Firewall Firmware <= 10.6.4 - Stored Cross-Site Scripting via LiveConnectionDetail.jsp Parameters

CVE-2016-7786 HIGH

Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 - Authenticated Direct Object Reference

CVE-2016-9554 HIGH

Sophos Web Appliance 4.2.1.3 - Remote Command Injection via MgrDiagnosticTools.php URL Parameter

CVE-2016-9553 HIGH

Sophos Web Appliance 4.2.1.3 - Authenticated Remote Command Injection via MgrReport.php

CVE-2016-7442 MEDIUM

Sophos Unified Threat Management Software <= 9.405-5 - Exposure of Sensitive Information via Proxy User Settings

CVE-2016-7397 MEDIUM

Sophos Unified Threat Management Software <= 9.405-5 - Sensitive Password Information Exposure via SMTP User Settings

CVE-2016-6597 HIGH

Sophos Mobile Control EAS Proxy < 3.5.0.3 - Open Reverse Proxy via Lotus Traveler

CVE-2016-3968 MEDIUM

Sophos Cyberoam CR100iNG UTM <10.6.3 MR-1 build 503 - XSS

CVE-2016-2046 MEDIUM

Sophos Unified Threat Management Software < 9.351 - Cross-Site Scripting via UserPortal Lang Parameter

Previous Page 4 of 7 Next

Products

sophos_anti-virus 35 web_appliance 17 anti-virus 12 firewall_firmware 10 sophos_puremessage_anti-virus 9 unified_threat_management_software 9 xg_firewall_firmware 9 safeguard_easy_device_encryption_client 8 sfos 8 sophos_small_business_suite 8 safeguard_enterprise_client 7 safeguard_lan_crypt_client 7 unified_threat_management 6 web_appliance_firmware 6 connect 4 hitmanpro 4 hitmanpro.alert 4 scanning_engine 4 endpoint_protection 3 endpoint_security 3 firewall 3 puremessage_for_microsoft_exchange 3 small_business_suite 3 anti-virus7.6.3 2 cyberoamos 2 es1000 2 es4000 2 intercept_x 2 intercept_x_endpoint 2 intercept_x_for_server 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy