A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM before v9.705 MR5, v9.607 MR7, and v9.511 MR11
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HSophos Unified Threat Management
APPSophos9.5119.6079.705< 9.5119.600 – 9.607 (bez)9.700 – 9.705 (bez)
CISA KEV — szczegółyi
- Dostawcai
- Sophos
- Produkti
- SG UTM
- Data dodania do KEVi
- 25 marca 2022
- Termin remediation (USA)i
- 15 kwietnia 2022(po terminie)
Zastosuj aktualizacje zgodnie z instrukcjami producenta.
▸ Pokaż oryginał (EN)
Apply updates per vendor instructions.
Luka podatności na zdalne wykonanie kodu istnieje w WebAdmin Sophos SG UTM.
▸ Pokaż oryginał (EN)
A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM.
Powiązane podatności
A post-auth SQL injection vulnerability in the Mail Manager potentially allows an authenticated attacker to ex...
Memory leak in the TCP stack in the kernel in Sophos UTM before 9.109 allows remote attackers to cause a denia...
Stored XSS can execute as administrator in quarantined email detail view in Sophos UTM before version 9.706.
The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows r...
Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gatewa...