Lucene search
K

765 matches found

NVD
NVD
added 2025/07/17 8:15 p.m.7 views

CVE-2025-7433

A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution...

8.8CVSS0.00106EPSS
Exploits0References1
NVD
NVD
added 2025/07/17 7:15 p.m.9 views

CVE-2025-7472

A local privilege escalation vulnerability in the Intercept X for Windows installer prior version 1.22 can lead to a local user gaining system level privileges, if the installer is run as SYSTEM...

7.5CVSS0.00118EPSS
Exploits0References1
NVD
NVD
added 2025/07/17 7:15 p.m.6 views

CVE-2024-13972

A vulnerability related to registry permissions in the Intercept X for Windows updater prior to Core Agent version 2024.3.2 can lead to a local user gaining SYSTEM level privileges during a product upgrade...

8.8CVSS0.00127EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/17 7:10 p.m.6 views

CVE-2025-7433

A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution...

8.8CVSS7.5AI score0.00106EPSS
Exploits0References1
CVE
CVE
added 2025/07/17 7:10 p.m.20 views

CVE-2025-7433

CVE-2025-7433 is a local privilege escalation affecting Sophos Intercept X for Windows with Central Device Encryption versions 2025.1 and older, enabling arbitrary code execution. The issue is confirmed across multiple sources in the connected set, including vendor advisories and PT security summ...

8.8CVSS7.6AI score0.00106EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/17 7:10 p.m.13 views

CVE-2025-7433

A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution...

8.8CVSS0.00106EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/17 7:2 p.m.10 views

CVE-2024-13972

A vulnerability related to registry permissions in the Intercept X for Windows updater prior to Core Agent version 2024.3.2 can lead to a local user gaining SYSTEM level privileges during a product upgrade...

8.8CVSS0.00127EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/17 7:2 p.m.4 views

CVE-2024-13972

A vulnerability related to registry permissions in the Intercept X for Windows updater prior to Core Agent version 2024.3.2 can lead to a local user gaining SYSTEM level privileges during a product upgrade...

8.8CVSS7.4AI score0.00127EPSS
Exploits0References1
CVE
CVE
added 2025/07/17 7:2 p.m.23 views

CVE-2024-13972

CVE-2024-13972 affects Sophos Intercept X for Windows updater prior to Core Agent 2024.3.2. The root cause is mishandling of registry permissions that allows a local user to escalate to SYSTEM during a product upgrade. CVSSv3.1 vector: LOCAL, LOW attack complexity, PR: LOW, UI: NONE, Scope: CHANG...

8.8CVSS7.4AI score0.00127EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/17 6:53 p.m.11 views

CVE-2025-7472

A local privilege escalation vulnerability in the Intercept X for Windows installer prior version 1.22 can lead to a local user gaining system level privileges, if the installer is run as SYSTEM...

7.5CVSS0.00118EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/17 6:53 p.m.3 views

CVE-2025-7472

A local privilege escalation vulnerability in the Intercept X for Windows installer prior version 1.22 can lead to a local user gaining system level privileges, if the installer is run as SYSTEM...

7.5CVSS6.6AI score0.00118EPSS
Exploits0References1
CVE
CVE
added 2025/07/17 6:53 p.m.23 views

CVE-2025-7472

CVE-2025-7472 describes a local privilege escalation in Sophos Intercept X for Windows installer prior to 1.22. If the installer is run with SYSTEM privileges, a local user may gain system-level access. Affected component: Intercept X for Windows installer; root cause: privilege escalation when t...

7.5CVSS6.7AI score0.00118EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/17 12:0 a.m.7 views

PT-2025-29962 · Sophos · Sophos Intercept X For Windows With Central Device Encryption +1

Name of the Vulnerable Software and Affected Versions: Sophos Intercept X for Windows with Central Device Encryption versions 2025.1 and older Description: A local privilege escalation vulnerability allows arbitrary code execution. Recommendations: Update Sophos Intercept X for Windows with Centr...

8.8CVSS7.8AI score0.00106EPSS
Exploits0References12
CNNVD
CNNVD
added 2025/07/17 12:0 a.m.4 views

Sophos Intercept X 安全漏洞

Sophos Intercept X is an endpoint protection from Sophos UK. It protects against unknown malware, exploits and ransomware. A security vulnerability exists in Sophos Intercept X versions prior to 2024.3.2, which stems from mishandling of registry permissions and could lead to a local user gaining...

8.8CVSS7.4AI score0.00127EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/17 12:0 a.m.3 views

Sophos Intercept X 安全漏洞

Sophos Intercept X is an endpoint protection from Sophos UK. It protects against unknown malware, exploits and ransomware. A security vulnerability exists in Sophos Intercept X versions prior to 1.22, which stems from a local elevation of privilege that could result in gaining system privileges...

7.5CVSS7.6AI score0.00118EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/17 12:0 a.m.5 views

Sophos Intercept X 安全漏洞

Sophos Intercept X is an endpoint protection from Sophos UK. It protects against unknown malware, exploits and ransomware. A security vulnerability exists in Sophos Intercept X 2025.1 and prior versions, which stems from a local elevation of privilege and could lead to the execution of arbitrary...

8.8CVSS7.7AI score0.00106EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/17 12:0 a.m.10 views

PT-2025-29949 · Sophos · Intercept X For Windows

Name of the Vulnerable Software and Affected Versions: Intercept X for Windows versions prior to 2024.3.2 Description: A vulnerability related to registry permissions in the Intercept X for Windows updater can allow a local user to gain SYSTEM level privileges during a product upgrade...

8.8CVSS7.6AI score0.00127EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2025/07/17 12:0 a.m.5 views

PT-2025-29963 · Sophos · Intercept X For Windows

Name of the Vulnerable Software and Affected Versions: Intercept X for Windows versions prior to 1.22 Description: A local privilege escalation issue exists in the Intercept X for Windows installer. If the installer is executed with SYSTEM privileges, a local user may gain system-level access...

7.5CVSS7.7AI score0.00118EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/06/26 3:12 a.m.8 views

CVE-2025-48463

Successful exploitation of the vulnerability could allow an attacker to intercept data and conduct session hijacking on the exposed data as the vulnerable product uses unencrypted HTTP communication, potentially leading to unauthorised access or data tampering...

3.1CVSS7.2AI score0.00112EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:38 a.m.5 views

CVE-2024-32963

Navidrome is an open source web-based music collection server and streamer. In affected versions of Navidrome are subject to a parameter tampering vulnerability where an attacker has the ability to manipulate parameter values in the HTTP requests. The attacker is able to change the parameter valu...

4.2CVSS6.9AI score0.00413EPSS
Exploits1References1
Rows per page
Query Builder