CVE-2012-4736 in SafeGuard Enterpriseinfo

Summary

The Device Encryption Client component in Sophos SafeGuard Enterprise 6.0, when a volume-based encryption policy is enabled in conjunction with a user-defined key, does not properly block use of exFAT USB flash drives, which makes it easier for local users to bypass intended access restrictions and copy sensitive information to a drive via multiple removal and reattach operations.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

08/29/2012

Disclosure

08/29/2012

Moderation

VulDB entry created

Entries

VDB-61943 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

5.1

EPSS

0.00051

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-4736
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-4736
CVE Details	https://www.cvedetails.com/cve/CVE-2012-4736/

◂ Previous Overview Next ▸