CVE-2021-25273

CVE-2021-25273

EPSS 0.8%

Stored XSS can execute as administrator in quarantined email detail view in Sophos UTM before version 9.706.

Affected products

Sophos · Sophos UTM

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://community.sophos.com/utm-firewall/b/blog/posts/utm-up2date-9-706-released http://seclists.org/fulldisclosure/2021/Dec/3