4 matches found
CVE-2022-4901
Multiple stored XSS vulnerabilities in Sophos Connect versions older than 2.2.90 allow Javascript code to run in the local UI via a malicious VPN configuration that must be manually loaded by the victim...
CVE-2022-4901
Multiple stored XSS vulnerabilities in Sophos Connect versions older than 2.2.90 allow Javascript code to run in the local UI via a malicious VPN configuration that must be manually loaded by the victim...
CVE-2022-4901
Multiple stored XSS vulnerabilities in Sophos Connect versions older than 2.2.90 allow Javascript code to run in the local UI via a malicious VPN configuration that must be manually loaded by the victim...
CVE-2022-4901
Sophos Connect (VPN client) is affected by multiple stored XSS vulnerabilities in versions prior to 2.2.90, allowing Javascript execution in the local UI when a malicious VPN configuration is manually loaded by the victim. Impact is limited to the local UI; no exploitation details are provided be...