2 matches found
CVE-2017-17023
CVE-2017-17023 affects Sophos UTM VPN endpoint using the NPC Engineering (NCP) Secure Entry Client 10.11 r32792 family (Sophos IPSec Client 11.04). The vulnerability lies in the VPN client’s software update feature: update metadata is fetched over HTTP (insecure) and the client does not verify th...
CVE-2025-26155
CVE-2025-26155 affects NCP Secure Enterprise Client 13.18 and NCP Secure Entry Windows Client 13.19. The issue is an Untrusted Search Path vulnerability in these Windows clients. Connected sources confirm the affected versions and root cause; no exploit details or attacker techniques are provided...