Vulnerabilities in Sophos
47 resultsCVE-2024-12728CRITICALA weak credentials vulnerability potentially allows privileged system access via SSH to Sophos Firewall older than version 20.0 MR3 (20.0.3)EPSS 0.9%CVE-2021-25268HIGHMultiple XSS vulnerabilities in Webadmin allow for privilege escalation from MySophos admin to SFOS admin in Sophos Firewall older than versEPSS 0.9%CVE-2021-25273—Stored XSS can execute as administrator in quarantined email detail view in Sophos UTM before version 9.706.EPSS 0.8%CVE-2025-10159CRITICALAn authentication bypass vulnerability allows remote attackers to gain administrative privileges on Sophos AP6 Series Wireless Access PointsEPSS 0.8%CVE-2022-3709MEDIUMA stored XSS vulnerability allows admin to super-admin privilege escalation in the Webadmin import group wizard of Sophos Firewall releases EPSS 0.8%CVE-2022-3711MEDIUMA post-auth read-only SQL injection vulnerability allows users to read non-sensitive configuration database contents in the User Portal of SEPSS 0.7%CVE-2022-3710LOWA post-auth read-only SQL injection vulnerability allows API clients to read non-sensitive configuration database contents in the API controEPSS 0.7%CVE-2022-3713HIGHA code injection vulnerability allows adjacent attackers to execute code in the Wifi controller of Sophos Firewall releases older than versiEPSS 0.7%CVE-2020-36692MEDIUMA reflected XSS via POST vulnerability in report scheduler of Sophos Web Appliance versions older than 4.3.10.4 allows execution of JavaScriEPSS 0.6%CVE-2023-5552HIGHA password disclosure vulnerability in the Secure PDF eXchange (SPX) feature allows attackers with full email access to decrypt PDFs in SophEPSS 0.5%CVE-2021-36806MEDIUM
A reflected XSS vulnerability allows an open redirect when the victim clicks a malicious link to an error page on
Sophos Email Appliance EPSS 0.4%CVE-2022-48309MEDIUMA CSRF vulnerability allows malicious websites to retrieve logs and technical support archives in Sophos Connect versions older than 2.2.90.EPSS 0.3%CVE-2022-4901LOWMultiple stored XSS vulnerabilities in Sophos Connect versions older than 2.2.90 allow Javascript code to run in the local UI via a maliciouEPSS 0.3%CVE-2021-25264—In multiple versions of Sophos Endpoint products for MacOS, a local attacker could execute arbitrary code with administrator privileges.EPSS 0.3%CVE-2021-25270—A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901.EPSS 0.3%CVE-2021-36808MEDIUMA local attacker could bypass the app password using a race condition in Sophos Secure Workspace for Android before version 9.7.3115.EPSS 0.2%CVE-2021-25269MEDIUMA local administrator could prevent the HMPA service from starting despite tamper protection using an unquoted service path vulnerability inEPSS 0.2%CVE-2021-25266LOWAn insecure data storage vulnerability allows a physical attacker with root privileges to retrieve TOTP secret keys from unlocked phones in EPSS 0.2%CVE-2021-25271—A local attacker could read or write arbitrary files with administrator privileges in HitmanPro before version Build 318.EPSS 0.2%CVE-2021-36809MEDIUMA local attacker can overwrite arbitrary files on the system with VPN client logs using administrator privileges, potentially resulting in aEPSS 0.2%