Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2023-1671 KEV |
|
[KEV] Command Injection in Sophos web-appliance (CVE-2023-1671)
command injection in Sophos web-appliance (CVE-2023-1671). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-9523 |
|
The Sophos Web Appliance before 4.3.2 has XSS in the FTP redirect page, aka NSWA-1342.
The Sophos Web Appliance before 4.3.2 has XSS in the FTP redirect page, aka NSWA-1342.
|
| CVE-2017-6182 |
|
OS Command Injection in sophos (CVE-2017-6182)
OS command injection in sophos (CVE-2017-6182). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6183 |
|
Command Injection in sophos (CVE-2017-6183)
command injection in sophos (CVE-2017-6183). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6184 |
|
Command Injection in sophos (CVE-2017-6184)
command injection in sophos (CVE-2017-6184). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6412 |
|
In Sophos Web Appliance (SWA) before 4.3.1.2, Session Fixation could occur, aka NSWA-1310.
In Sophos Web Appliance (SWA) before 4.3.1.2, Session Fixation could occur, aka NSWA-1310.
|
| CVE-2016-9553 |
|
Command Injection in sophos (CVE-2016-9553)
command injection in sophos (CVE-2016-9553). Successful exploitation can lead to full system takeover.
|
| CVE-2016-9554 |
|
Command Injection in sophos (CVE-2016-9554)
command injection in sophos (CVE-2016-9554). Successful exploitation can lead to full system takeover.
|