Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:36 a.m.16 views

CVE-2019-17059

A shell injection vulnerability on the Sophos Cyberoam firewall appliance with CyberoamOS before 10.6.6 MR-6 allows remote attackers to execute arbitrary commands via the Web Admin and SSL VPN consoles...

10CVSS8.3AI score0.07406EPSS
Exploits1References1
CNVD
CNVD
added 2019/10/15 12:0 a.m.2 views

Sophos Cyberoam firewall appliance shell injection vulnerability

Sophos Cyberoam firewall appliance is a firewall appliance from Sophos UK.CyberoamOS is the set of operating systems that run on it. A security vulnerability exists in the Sophos Cyberoam firewall appliance running CyberoamOS versions prior to 10.6.6 MR-6. The vulnerability can be exploited by an...

10CVSS7.5AI score0.07406EPSS
Exploits1References1
OSV
OSV
added 2019/10/11 5:15 p.m.5 views

CVE-2019-17059

A shell injection vulnerability on the Sophos Cyberoam firewall appliance with CyberoamOS before 10.6.6 MR-6 allows remote attackers to execute arbitrary commands via the Web Admin and SSL VPN consoles...

9.8CVSS7.6AI score0.07406EPSS
Exploits1References3
Symantec
Symantec
added 2019/10/08 12:0 a.m.80 views

Sophos Cyberoam Firewall CVE-2019-17059 Remote Code Execution Vulnerability

Description Sophos Cyberoam Firewall is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Sophos CyberoamOS 10.6.6 MR-5 and prior are vulnerable. Technologies Affected Sophos CyberoamOS 10.6.6...

0.2AI score0.07406EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2017/06/07 12:29 p.m.3 views

CVE-2016-9834

An XSS vulnerability allows remote attackers to execute arbitrary client side script on vulnerable installations of Sophos Cyberoam firewall devices with firmware through 10.6.4. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

6.1CVSS5.9AI score
Exploits0References1
CNVD
CNVD
added 2015/09/23 12:0 a.m.2 views

Cyberoam CR500iNG-XP SQL Injection Vulnerability

Cyberoam NG is a next-generation firewall product based on CyberoamOS. A remote SQL blind injection vulnerability exists in Cyberoam CR500iNG-XP - 10.6.2 MR-1 and earlier versions. This vulnerability allows attackers to execute sql commands in a database...

8.4AI score
Exploits0References1
0day.today
0day.today
added 2015/08/31 12:0 a.m.41 views

Cyberoam Firewall CR500iNG-XP - 10.6.2 MR-1 - Blind SQL Injection Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Cyberoam : Blind SQL Injection Date: 31/Aug/2015 Exploit Author: Dharmendra Kumar Singh Contact: email protected Vendor Homepage: http://www.cyberoam.com Software Link: http://www.cyberoam.com/NGFW/ Version: CR500iNG-XP -...

7.1AI score
Exploits0
Rows per page
Query Builder