Sophos Vulnerabilidad

Cronología

Escribe

Not Defined	76
Anti-Malware Software	51
Firewall Software	25
Android App Software	3
Groupware Software	3

Producto

Sophos Anti-Virus	50
Sophos Web Appliance	20
Sophos Firewall	13
Sophos UTM	8
Sophos SafeGuard Enterprise	8

Contramedidas

Official Fix	118
Temporary Fix	0
Workaround	2
Unavailable	5
Not Defined	35

Explotabilidad

High	7
Functional	0
Proof-of-Concept	62
Unproven	5
Not Defined	86

Vector de acceso

Not Defined	0
Physical	1
Local	32
Adjacent	2
Network	125

Autenticación

Not Defined	0
High	13
Low	48
None	99

La interacción del usuario

Not Defined	0
Required	26
None	134

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	2
≤4	5
≤5	18
≤6	40
≤7	23
≤8	46
≤9	17
≤10	9

CVSSv3 Temp

≤1	0
≤2	0
≤3	2
≤4	11
≤5	27
≤6	30
≤7	45
≤8	21
≤9	19
≤10	5

VulDB

≤1	0
≤2	1
≤3	5
≤4	11
≤5	20
≤6	42
≤7	20
≤8	44
≤9	9
≤10	8

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	5
≤6	6
≤7	10
≤8	19
≤9	11
≤10	8

CNA

≤1	0
≤2	0
≤3	1
≤4	3
≤5	4
≤6	2
≤7	4
≤8	5
≤9	5
≤10	5

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	1
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	30
<2k	44
<5k	35
<10k	12
<25k	8
<50k	30
<100k	1
≥100k	0

Explotar hoy

<1k	153
<2k	3
<5k	1
<10k	2
<25k	1
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (58): Anti-Virus (50), Antivirus (1), Authenticator (1), Capsule8 Console (1), Central Endpoint (1), Cloud Optix (1), Connect (3), Connect Client (1), Control (1), Cyberoam CR500iNG-XP (1), Cyberoam Firewall (2), Cyberoam OS (1), Cyberoam UTM (1), Cyberoam UTM CR25iNG (1), Disk Encryption (1), EAS Proxy (1), ES4000 (1), Email Appliance (1), Endpoint Protection (3), Endpoint Security (1), Exploit Prevention (1), Firewall (13), HitmanPro (1), HitmanPro.Alert (4), Home (1), Home Endpoint (1), IPSec Client (1), Intercept X Advanced (1), Intercept X Advanced for Server (1), Intercept X Endpoint (2), Intercept X for Mobile (1), Intercept X for Server (1), Mobile (1), Mobile Managed On-Premises (1), PureMessage for Microsoft Exchange (3), PureMessage for UNIX (1), SFOS (2), SG UTM (2), SSL VPN Client (1), SafeGuard Easy (7), SafeGuard Enterprise (8), SafeGuard Enterprise Device Encryption (1), SafeGuard LAN Crypt (7), SafeGuard PrivateCrypto (1), Secure Email App (1), Secure Web Gateway. (1), Secure Web Gateway Server (1), Secure Workspace (1), SurfRight HitmanPro (3), Tester Tool (2), Threat Engine Detection (1), UTM (8), Unified Threat Management (1), Web Appliance (20), Web Appliance Remote (1), Web Protection Appliance (2), XG Firewall (7), iView (1)

Link to Vendor Website: https://www.sophos.com/

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	EPSS	CTI	CVE
2023-11-30	5.0	5.0	Sophos Email Appliance cross site scripting	Desconocido	Not Defined	Official Fix	0.00046	0.00	CVE-2021-36806
2023-10-18	6.0	6.0	Sophos Firewall Secure PDF eXchange divulgación de información	Firewall Software	Not Defined	Not Defined	0.00087	0.04	CVE-2023-5552
2023-07-05	4.8	4.8	Sophos iView cross site scripting	Desconocido	Not Defined	Not Defined	0.00046	0.00	CVE-2023-33335
2023-06-30	4.1	4.1	Sophos Web Appliance Double Quote cross site scripting	Desconocido	Not Defined	Not Defined	0.00045	0.00	CVE-2023-33336
2023-04-04	9.8	9.6	Sophos Web Appliance Warn-proceed escalada de privilegios	Desconocido	Not Defined	Official Fix	0.96791	0.03	CVE-2023-1671
2023-04-04	7.2	7.0	Sophos Web Appliance Exception Wizard escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00092	0.00	CVE-2022-4934
2023-04-04	5.4	5.3	Sophos Web Appliance Report Scheduler cross site scripting	Desconocido	Not Defined	Official Fix	0.00058	0.00	CVE-2020-36692
2023-03-01	4.3	4.2	Sophos Connect cross site request forgery	Desconocido	Not Defined	Official Fix	0.00046	0.00	CVE-2022-48309
2023-03-01	4.3	4.3	Sophos Connect Local UI cross site scripting	Desconocido	Not Defined	Official Fix	0.00063	0.02	CVE-2022-4901
2023-03-01	4.4	4.3	Sophos Connect Technical Support Archives divulgación de información	Desconocido	Not Defined	Official Fix	0.00043	0.00	CVE-2022-48310
2022-12-02	5.9	5.8	Sophos Firewall Webadmin Import Group Wizard cross site scripting	Firewall Software	Not Defined	Official Fix	0.00089	0.00	CVE-2022-3709
2022-12-02	8.8	8.6	Sophos Firewall Wifi Controller escalada de privilegios	Firewall Software	Not Defined	Official Fix	0.00065	0.05	CVE-2022-3713
2022-12-02	4.3	4.2	Sophos Firewall User Portal sql injection	Firewall Software	Not Defined	Official Fix	0.00053	0.02	CVE-2022-3711
2022-12-02	7.2	7.0	Sophos Firewall Webadmin escalada de privilegios	Firewall Software	Not Defined	Official Fix	0.00105	0.00	CVE-2022-3696
2022-12-02	7.2	7.0	Sophos Firewall SSL VPN Configuration Upload escalada de privilegios	Firewall Software	Not Defined	Official Fix	0.00118	0.00	CVE-2022-3226
2022-12-02	2.7	2.6	Sophos Firewall API Controller sql injection	Firewall Software	Not Defined	Official Fix	0.00053	0.00	CVE-2022-3710
2022-11-16	8.5	8.5	Sophos Mobile Managed On-Premises XML escalada de privilegios	Desconocido	Not Defined	Not Defined	0.41283	0.00	CVE-2022-3980
2022-09-23	8.5	8.5	Sophos Firewall User Portal/Webadmin escalada de privilegios	Firewall Software	Not Defined	Not Defined	0.12788	0.03	CVE-2022-3236
2022-09-08	7.2	7.0	Sophos Firewall Webadmin sql injection	Firewall Software	Not Defined	Official Fix	0.00104	0.00	CVE-2022-1807
2022-05-06	5.4	5.3	Sophos Firewall Webadmin cross site scripting	Firewall Software	Not Defined	Official Fix	0.00104	0.00	CVE-2021-25268
2022-05-06	4.6	4.5	Sophos Firewall Webadmin cross site scripting	Firewall Software	Not Defined	Official Fix	0.00104	0.00	CVE-2021-25267
2022-04-28	2.8	2.8	Sophos Authenticator/Intercept X for Mobile TOTP Secret Key escalada de privilegios	Android App Software	Not Defined	Official Fix	0.00044	0.00	CVE-2021-25266
2022-03-29	5.3	5.3	Sophos Firewall Webadmin divulgación de información	Firewall Software	Not Defined	Not Defined	0.00125	0.00	CVE-2022-0331
2022-03-25	8.5	8.5	Sophos Firewall User Portal/Webadmin autenticación débil	Firewall Software	Not Defined	Not Defined	0.97434	0.08	CVE-2022-1040
2022-03-22	7.5	7.4	Sophos UTM Mail Manager sql injection	Desconocido	Not Defined	Official Fix	0.00088	0.04	CVE-2022-0386

135 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 135 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Interested in the pricing of exploits?

See the underground prices here!