Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sophos vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2014-5501
Stack-based buffer overflow in the diagnose service in the Sophos Cyberoam appliances with CyberoamOS prior to 10.6.1 GA allows remote malicious users to execute arbitrary code via a crafted webpage or file.
Cyberoam Cyberoam Os
828
VMScore
CVE-2008-5541
Sophos Anti-Virus 4.33.0, when Internet Explorer 6 or 7 is used, allows remote malicious users to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt e...
Sophos Anti-virus 4.33.0
801
VMScore
CVE-2018-16117
A shell escape vulnerability in /webconsole/Controller in Admin Portal of Sophos XG firewall 17.0.8 MR-8 allow remote authenticated malicious users to execute arbitrary OS commands via shell metacharacters in the "dbName" POST parameter.
Sophos Sfos
Sophos Sfos 17.1
801
VMScore
CVE-2014-5502
The Sophos Cyberoam appliances with CyberoamOS prior to 10.6.1 GA allows remote authenticated users to inject arbitrary commands via a (1) checkcert_key, (2) webclient_portal_settings, (3) sslvpn_liveuser_delete, or (4) ccc_flush_sql_file opcode.
Cyberoam Cyberoam Os
756
VMScore
CVE-2021-25267
Multiple XSS vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 19.0 GA.
Sophos Firewall Firmware
755
VMScore
CVE-2017-6182
In Sophos Web Appliance (SWA) prior to 4.3.1.2, a section of the machine's interface responsible for generating reports was vulnerable to remote command injection via functions, aka NSWA-1304.
Sophos Web Appliance
1 EDB exploit
755
VMScore
CVE-2015-6811
SQL injection vulnerability in the Sophos Cyberoam CR500iNG-XP firewall appliance with CyberoamOS 10.6.2 MR-1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the username parameter to login.xml.
Cyberoam Cyberoamos 10.6.2
1 EDB exploit
755
VMScore
CVE-2004-0937
Sophos Anti-Virus prior to 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me prior to 3.88.0, allows remote malicious users to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from ...
Broadcom Etrust Antivirus 7.0
Ca Etrust Antivirus 7.0 Sp2
Broadcom Etrust Ez Armor 2.0
Broadcom Etrust Ez Armor 2.3
Broadcom Inoculateit 6.0
Eset Software Nod32 Antivirus 1.0.11
Rav Antivirus Rav Antivirus Desktop 8.6
Rav Antivirus Rav Antivirus For File Servers 1.0
Sophos Sophos Anti-virus 3.81
Sophos Sophos Anti-virus 3.82
Sophos Sophos Anti-virus 3.83
Broadcom Etrust Antivirus Gateway 7.1
Broadcom Etrust Ez Antivirus 6.1
Broadcom Etrust Intrusion Detection 1.5
Broadcom Etrust Secure Content Manager 1.0
Kaspersky Lab Kaspersky Anti-virus 3.0
Kaspersky Lab Kaspersky Anti-virus 4.0
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 3.78d
Sophos Sophos Anti-virus 3.86
Sophos Sophos Puremessage Anti-virus 4.6
Archive Zip Archive Zip 1.13
1 EDB exploit
755
VMScore
CVE-2004-0932
McAfee Anti-Virus Engine DATS drivers prior to 4398 released on Oct 13th 2004 and DATS Driver prior to 4397 October 6th 2004 allows remote malicious users to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent t...
Archive Zip Archive Zip 1.13
Broadcom Etrust Ez Antivirus 6.2
Broadcom Etrust Ez Antivirus 6.3
Broadcom Etrust Secure Content Manager 1.0
Ca Etrust Secure Content Manager 1.0
Kaspersky Lab Kaspersky Anti-virus 4.0
Kaspersky Lab Kaspersky Anti-virus 5.0
Sophos Sophos Anti-virus 3.79
Sophos Sophos Anti-virus 3.80
Sophos Sophos Puremessage Anti-virus 4.6
Sophos Sophos Small Business Suite 1.0
Broadcom Etrust Antivirus Gateway 7.1
Broadcom Etrust Ez Antivirus 6.1
Broadcom Etrust Intrusion Detection 1.4.5
Broadcom Etrust Intrusion Detection 1.5
Eset Software Nod32 Antivirus 1.0.13
Kaspersky Lab Kaspersky Anti-virus 3.0
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 3.78d
Sophos Sophos Anti-virus 3.85
Sophos Sophos Anti-virus 3.86
Broadcom Brightstor Arcserve Backup 11.1
1 EDB exploit
1 Github repository
755
VMScore
CVE-2004-0933
Computer Associates (CA) InoculateIT 6.0, eTrust Antivirus r6.0 through r7.1, eTrust Antivirus for the Gateway r7.0 and r7.1, eTrust Secure Content Manager, eTrust Intrusion Detection, EZ-Armor 2.0 up to and including 2.4, and EZ-Antivirus 6.1 up to and including 6.3 allow remote...
Archive Zip Archive Zip 1.13
Broadcom Etrust Ez Antivirus 6.2
Broadcom Etrust Ez Antivirus 6.3
Broadcom Etrust Secure Content Manager 1.0
Ca Etrust Secure Content Manager 1.0
Kaspersky Lab Kaspersky Anti-virus 4.0
Kaspersky Lab Kaspersky Anti-virus 5.0
Mcafee Antivirus Engine 4.3.20
Sophos Sophos Anti-virus 3.79
Sophos Sophos Anti-virus 3.80
Sophos Sophos Puremessage Anti-virus 4.6
Sophos Sophos Small Business Suite 1.0
Broadcom Etrust Antivirus Gateway 7.1
Broadcom Etrust Ez Antivirus 6.1
Broadcom Etrust Intrusion Detection 1.4.5
Broadcom Etrust Intrusion Detection 1.5
Eset Software Nod32 Antivirus 1.0.13
Kaspersky Lab Kaspersky Anti-virus 3.0
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 3.78d
Sophos Sophos Anti-virus 3.85
Sophos Sophos Anti-virus 3.86
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »