← back
CVE-2016-7786

CVE-2016-7786

EPSS 7.0%
Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 allows remote authenticated users to bypass intended access restrictions via direct object reference, as demonstrated by a request for Licenseinformation.jsp. This is fixed in 10.6.5.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/44469/unverifiedexploitdbwww.exploit-db.com/exploits/44469unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://infosecninja.blogspot.in/2017/04/cve-2016-7786-sophos-cyberoam-utm.htmlhttps://www.exploit-db.com/exploits/44469/