Lucene search

CVE-2018-6856

🗓️ 09 Jul 2018 18:00:29Reported by [email protected]Type

Sophos SafeGuard versions prior to 8.00.5, 7.00.3, and 3.95.2 are vulnerable to local privilege escalation through IOCTL 0x8020601C, allowing control of a global variable and potential run code as SYSTEM

Reporter	Title	Published	Views	Family All 4
CVE	CVE-2018-6856	9 Jul 201818:29	–	cve
Cvelist	CVE-2018-6856	9 Jul 201818:00	–	cvelist
Prion	Buffer overflow	9 Jul 201818:29	–	prion
OpenVAS	Sophos SafeGuard Privilege Escalation Vulnerability - Windows	4 Jul 201800:00	–	openvas

Nvd

Node

sophos safeguard_easy_device_encryption_clientMatch6.00

sophos safeguard_easy_device_encryption_clientMatch6.10

sophos safeguard_easy_device_encryption_clientMatch7.00

sophos safeguard_enterprise_clientMatch5.60.3vs-nfd

sophos safeguard_enterprise_clientMatch6.00

sophos safeguard_enterprise_clientMatch6.00.1

sophos safeguard_enterprise_clientMatch6.10

sophos safeguard_enterprise_clientMatch7.00

sophos safeguard_enterprise_clientMatch8.00

sophos safeguard_lan_crypt_clientMatch3.90.1ts

sophos safeguard_lan_crypt_clientMatch3.90.2

sophos safeguard_lan_crypt_clientMatch3.95.1

sophos safeguard_lan_crypt_clientMatch3.95.1ts

Source	Link
seclists	www.seclists.org/fulldisclosure/2018/Jul/20
community	www.community.sophos.com/kb/en-us/131934
labs	www.labs.nettitude.com/blog/cve-2018-6851-to-cve-2018-6857-sophos-privilege-escalation-vulnerabilities/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Jul 2018 18:29Current

7.8High risk

Vulners AI Score7.8

CVSS27.2

CVSS37.8

EPSS0.0004

CWE-119