CVE-2022-3236

A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v19.0 MR1 and older...

CVE-2024-12729

CVE-2024-12729 is a post-auth code injection vulnerability in the Sophos Firewall User Portal, affecting versions prior to 21.0 MR1 (21.0.1). The issue allows authenticated users to remotely execute code on the device. Public documentation highlights remediation by upgrading to 21.0 MR1 or newer ...

PT-2024-9754

Name of the Vulnerable Software and Affected Versions Sophos Firewall versions prior to 21.0 MR1 21.0.1 Description A pre-auth SQL injection vulnerability in the email protection feature of Sophos Firewall allows access to the reporting database and can lead to remote code execution if a specific...

CVE-2024-23194

Improper output Neutralization for Logs CWE-117 in the Command Centre API Diagnostics Endpoint could allow an attacker limited ability to modify Command Centre log files. This issue affects: Gallagher Command Centre v9.10 prior to vEL9.10.1268 MR1...

CVE-2023-46686

A reliance on untrusted inputs in a security decision could be exploited by a privileged user to configure the Gallagher Command Centre Diagnostics Service to use less secure communication protocols. This issue affects: Gallagher Diagnostics Service prior to v1.3.0 distributed in 9.00.1507MR1...

PT-2022-4853

Name of the Vulnerable Software and Affected Versions Sophos Firewall versions prior to v19.0 MR1 Description A code injection vulnerability in the User Portal and Webadmin of Sophos Firewall allows a remote attacker to execute code. The vulnerability is being actively exploited by hackers in...

CVE-2022-1807

Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 18.5 MR4 and version 19.0 MR1...

CVE-2022-1807

Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 18.5 MR4 and version 19.0 MR1...

CVE-2021-21598

Dell Wyse ThinOS exposes a Sensitive Information Disclosure via log data for authenticated users with physical access, affecting versions 9.0, 9.1, and 9.1 MR1. The vulnerability enables reading smartcard data from log files. Root cause details are not fully provided in the documents; no remediat...

CVE-2015-4281

Cross-site request forgery CSRF vulnerability in Cisco WebEx Meetings Server 2.5 MR1 allows remote attackers to hijack the authentication of arbitrary users, aka Bug IDs CSCus56150 and CSCus56146...

CVE-2015-4281

The CVE-2015-4281 issue affects Cisco WebEx Meetings Server 2.5 MR1 and is caused by insufficient CSRF protections, enabling a remote attacker to hijack user authentication by coercing a logged-in user to visit a malicious page or link. Documents in the connected set (including Cisco advisory Cis...

CVE-2014-4825

IBM Security QRadar SIEM QRM 7.1 MR1 and QRM/QVM 7.2 MR2 does not properly implement secure connections, which allows man-in-the-middle attackers to discover cleartext credentials via unspecified vectors...

CVE-2014-4827

CVE-2014-4827 is an XSS vulnerability affecting IBM QRadar-related products. The vulnerability arises from improper validation of user-supplied input, allowing a remote attacker to craft a URL that injects arbitrary web script or HTML in QRadar’s web interface. Affected products include IBM QRada...

CVE-2014-4825

Summary of CVE-2014-4825 (IBM QRadar/QRM/QVM) : IBM QRadar SIEM QRM 7.1 MR1 and QRM/QVM 7.2 MR2 are reported to handle secure connections improperly, enabling an attacker to obtain cleartext credentials via unspecified vectors. The IBM bulletin lists affected products as IBM QRadar / QRM / QVM, w...

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Security QRadar SIEM 7.2 MR1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted URL...

CVE-2014-0836

IBM QRadar SIEM is affected by CVE-2014-0836 (XSS) in 7.2 MR1 and earlier. The vulnerability allows remote attackers to inject arbitrary web script or HTML via a crafted URL, potentially impacting integrity of data. The IBM Security Bulletin confirms the issue and provides remediation: upgrade to...

CVE-2014-0837

The AutoUpdate process in IBM Security QRadar SIEM 7.2 MR1 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers via a crafted certificate...

CVE-2014-0837

The CVE-2014-0837 issue affects IBM QRadar SIEM (and related QRadar components) where the AutoUpdate process does not verify SSL certificates, allowing MITM attackers to spoof the update server and potentially tamper data. Affected products include QRadar SIEM 7.2 MR1 and earlier (QRM/QVM). The r...