HIGH🇬🇧 English

CVE-2017-17023

CVSS 8.1v3.0pub. 2019-04-09upd. 2024-11-21

The Sophos UTM VPN endpoint interacts with client software provided by NPC Engineering (www.ncp-e.com). The affected client software, "Sophos IPSec Client" 11.04 is a rebranded version of NCP "Secure Entry Client" 10.11 r32792. A vulnerability in the software update feature of the VPN client allows a man-in-the-middle (MITM) or man-on-the-side (MOTS) attacker to execute arbitrary, malicious software on a target user's computer. This is related to SIC_V11.04-64.exe (Sophos), NCP_EntryCl_Windows_x86_1004_31799.exe (NCP), and ncpmon.exe (both Sophos and NCP). The vulnerability exists because: (1) the VPN client requests update metadata over an insecure HTTP connection; and (2) the client software does not check if the software update is signed before running it.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ncp E Ncp Secure Entry Client

    APP
    Ncp-E
    10.11
  • Sophos Ipsec Client

    APP
    Sophos
    11.04
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
VPN
CWE
Referencje

Powiązane podatności

CVE-2025-26155CRITICAL9.8PL ✓ten sam produkt

Untrusted Search Path w klientach VPN NCP Secure (CRITICAL)

CVE-2023-1671CRITICAL9.8⚠ KEVten sam vendor

A pre-auth command injection vulnerability in the warn-proceed handler of Sophos Web Appliance older than vers...

CVE-2022-3236CRITICAL9.8⚠ KEVten sam vendor

A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sop...

CVE-2022-1040CRITICAL9.8⚠ KEVten sam vendor

An authentication bypass vulnerability in the User Portal and Webadmin allows a remote attacker to execute cod...

CVE-2020-29574CRITICAL9.8⚠ KEVten sam vendor

An SQL injection vulnerability in the WebAdmin of Cyberoam OS through 2020-12-04 allows unauthenticated attack...