765 matches found
CVE-2025-7433
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution...
CVE-2025-7472
A local privilege escalation vulnerability in the Intercept X for Windows installer prior version 1.22 can lead to a local user gaining system level privileges, if the installer is run as SYSTEM...
CVE-2024-13972
A vulnerability related to registry permissions in the Intercept X for Windows updater prior to Core Agent version 2024.3.2 can lead to a local user gaining SYSTEM level privileges during a product upgrade...
CVE-2025-7433
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution...
CVE-2025-7433
CVE-2025-7433 is a local privilege escalation affecting Sophos Intercept X for Windows with Central Device Encryption versions 2025.1 and older, enabling arbitrary code execution. The issue is confirmed across multiple sources in the connected set, including vendor advisories and PT security summ...
CVE-2025-7433
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution...
CVE-2024-13972
A vulnerability related to registry permissions in the Intercept X for Windows updater prior to Core Agent version 2024.3.2 can lead to a local user gaining SYSTEM level privileges during a product upgrade...
CVE-2024-13972
A vulnerability related to registry permissions in the Intercept X for Windows updater prior to Core Agent version 2024.3.2 can lead to a local user gaining SYSTEM level privileges during a product upgrade...
CVE-2024-13972
CVE-2024-13972 affects Sophos Intercept X for Windows updater prior to Core Agent 2024.3.2. The root cause is mishandling of registry permissions that allows a local user to escalate to SYSTEM during a product upgrade. CVSSv3.1 vector: LOCAL, LOW attack complexity, PR: LOW, UI: NONE, Scope: CHANG...
CVE-2025-7472
A local privilege escalation vulnerability in the Intercept X for Windows installer prior version 1.22 can lead to a local user gaining system level privileges, if the installer is run as SYSTEM...
CVE-2025-7472
A local privilege escalation vulnerability in the Intercept X for Windows installer prior version 1.22 can lead to a local user gaining system level privileges, if the installer is run as SYSTEM...
CVE-2025-7472
CVE-2025-7472 describes a local privilege escalation in Sophos Intercept X for Windows installer prior to 1.22. If the installer is run with SYSTEM privileges, a local user may gain system-level access. Affected component: Intercept X for Windows installer; root cause: privilege escalation when t...
PT-2025-29962 · Sophos · Sophos Intercept X For Windows With Central Device Encryption +1
Name of the Vulnerable Software and Affected Versions: Sophos Intercept X for Windows with Central Device Encryption versions 2025.1 and older Description: A local privilege escalation vulnerability allows arbitrary code execution. Recommendations: Update Sophos Intercept X for Windows with Centr...
Sophos Intercept X 安全漏洞
Sophos Intercept X is an endpoint protection from Sophos UK. It protects against unknown malware, exploits and ransomware. A security vulnerability exists in Sophos Intercept X versions prior to 2024.3.2, which stems from mishandling of registry permissions and could lead to a local user gaining...
Sophos Intercept X 安全漏洞
Sophos Intercept X is an endpoint protection from Sophos UK. It protects against unknown malware, exploits and ransomware. A security vulnerability exists in Sophos Intercept X versions prior to 1.22, which stems from a local elevation of privilege that could result in gaining system privileges...
Sophos Intercept X 安全漏洞
Sophos Intercept X is an endpoint protection from Sophos UK. It protects against unknown malware, exploits and ransomware. A security vulnerability exists in Sophos Intercept X 2025.1 and prior versions, which stems from a local elevation of privilege and could lead to the execution of arbitrary...
PT-2025-29949 · Sophos · Intercept X For Windows
Name of the Vulnerable Software and Affected Versions: Intercept X for Windows versions prior to 2024.3.2 Description: A vulnerability related to registry permissions in the Intercept X for Windows updater can allow a local user to gain SYSTEM level privileges during a product upgrade...
PT-2025-29963 · Sophos · Intercept X For Windows
Name of the Vulnerable Software and Affected Versions: Intercept X for Windows versions prior to 1.22 Description: A local privilege escalation issue exists in the Intercept X for Windows installer. If the installer is executed with SYSTEM privileges, a local user may gain system-level access...
CVE-2025-48463
Successful exploitation of the vulnerability could allow an attacker to intercept data and conduct session hijacking on the exposed data as the vulnerable product uses unencrypted HTTP communication, potentially leading to unauthorised access or data tampering...
CVE-2024-32963
Navidrome is an open source web-based music collection server and streamer. In affected versions of Navidrome are subject to a parameter tampering vulnerability where an attacker has the ability to manipulate parameter values in the HTTP requests. The attacker is able to change the parameter valu...