sophos

173 tracked vulnerabilities.

CVE-2016-0778 HIGH
OpenSSH 5.x-7.x < 7.1p2 - Denial of Service via Roaming Connection Descriptor Mismanagement
Jan 14, 2016
CVSS 8.1
EPSS 0.01
CVE-2016-0777 MEDIUM
OpenSSH <7.1p2 - Info Disclosure
Jan 14, 2016
CVSS 6.5
EPSS 0.67
CVE-2015-7547 HIGH
GNU C Library <2.23 - Buffer Overflow
Feb 18, 2016
CVSS 8.1
EPSS 0.94
CVE-2015-8605 MEDIUM
ISC DHCP <4.1-ESV-R12-P1, 4.2.x, 4.3.x <4.3.3-P1 - DoS
Jan 14, 2016
CVSS 6.5
EPSS 0.43
CVE-2014-2385
Sophos Anti-Virus for Linux <9.6.1 - XSS
Jul 22, 2014
EPSS 0.01
CVE-2014-2005 MEDIUM
Sophos Disk Encryption <5.2.2 - Privilege Escalation
Jun 25, 2014
CVSS 6.8
EPSS 0.00
CVE-2014-2850
Sophos Web Appliance Firmware < 3.8.2 - Authenticated OS Command Injection via Network Interface Address Parameter
Apr 11, 2014
EPSS 0.76
CVE-2014-2849
Sophos Web Appliance Firmware < 3.8.2 - Authenticated Admin Password Change
Apr 11, 2014
EPSS 0.76
CVE-2014-2537
Sophos Unified Threat Management < 9.109 - Denial of Service via TCP Stack Memory Leak
Mar 18, 2014
EPSS 0.02
CVE-2014-1213
Sophos Anti-Virus Engine < 3.50.1 - Local Denial of Service via Mutex/Event Manipulation
Feb 10, 2014
EPSS 0.00
CVE-2013-2643
Sophos Web Appliance <3.7.8.2 - XSS
Mar 18, 2014
EPSS 0.01
CVE-2013-2642
Sophos Web Appliance <3.7.8.2 - RCE
Mar 18, 2014
EPSS 0.12
CVE-2013-2641
Sophos Web Appliance <3.7.8.2 - Path Traversal
Mar 18, 2014
EPSS 0.82
CVE-2013-5932
Sophos UTM - Unspecified Vulnerability in WebAdmin
Sep 23, 2013
EPSS 0.01
CVE-2013-4984
Sophos Web Appliance <3.7.9.1, <3.8-3.8.1.1 - Privilege Escalation
Sep 10, 2013
EPSS 0.08
CVE-2013-4983
Sophos Web Appliance <3.7.9.1, <3.8.1.1 - Command Injection
Sep 10, 2013
EPSS 0.93
CVE-2012-6706 CRITICAL
Sophos Threat Detection Engine < 3.37.2 - Remote Code Execution via Integer Overflow in VMSF_DELTA Processing
Jun 22, 2017
CVSS 9.8
EPSS 0.02
CVE-2012-4736
Sophos SafeGuard Enterprise 6.0 - Info Disclosure
Aug 29, 2012
EPSS 0.00
CVE-2012-3238
Astaro Security Gateway <8.305 - XSS
Jul 09, 2012
EPSS 0.01
CVE-2012-1461
Multiple Antivirus Products - Malware Detection Bypass via Gzip File Parser
Mar 21, 2012
EPSS 0.84
CVE-2012-1459
Ahnlab V3 Internet Security - Access Control
Mar 21, 2012
EPSS 0.80
CVE-2012-1458
ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 - Malware Detection Bypass via CHM LZXC Header Reset Interval
Mar 21, 2012
EPSS 0.08
CVE-2012-1456
Aladdin Esafe - Access Control
Mar 21, 2012
EPSS 0.18
CVE-2012-1453
Antiy Avl SDK - Access Control
Mar 21, 2012
EPSS 0.78
CVE-2012-1450
Emsisoft Anti-malware - Access Control
Mar 21, 2012
EPSS 0.20
Products
sophos_anti-virus 35 web_appliance 17 anti-virus 12 firewall_firmware 10 sophos_puremessage_anti-virus 9 unified_threat_management_software 9 xg_firewall_firmware 9 safeguard_easy_device_encryption_client 8 sfos 8 sophos_small_business_suite 8 safeguard_enterprise_client 7 safeguard_lan_crypt_client 7 unified_threat_management 6 web_appliance_firmware 6 connect 4 hitmanpro 4 hitmanpro.alert 4 scanning_engine 4 endpoint_protection 3 endpoint_security 3 firewall 3 puremessage_for_microsoft_exchange 3 small_business_suite 3 anti-virus7.6.3 2 cyberoamos 2 es1000 2 es4000 2 intercept_x 2 intercept_x_endpoint 2 intercept_x_for_server 2
Quick Filters
Critical CVEs With Exploits In CISA KEV