Lucene search
Sophos UTM Security Vulnerabilities
cve
Confd log files contain local users', including rootβs, SHA512crypt password hashes with insecure access permissions. This allows a local attacker to attempt off-line brute-force attacks against these password hashes in Sophos UTM before version...
7.8CVSS
7.6AI Score
0.0004EPSS
2022-03-22 12:15 AM
86
cve
A post-auth SQL injection vulnerability in the Mail Manager potentially allows an authenticated attacker to execute code in Sophos UTM before version...
8.8CVSS
8.9AI Score
0.001EPSS
2022-03-22 12:15 AM
59
cve
Stored XSS can execute as administrator in quarantined email detail view in Sophos UTM before version...
4.8CVSS
4.9AI Score
0.001EPSS
2021-07-29 08:15 PM
55
6