Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: web-appliance Clear
ID Title
CVE-2023-1671 KEV [KEV] Command Injection in Sophos web-appliance (CVE-2023-1671)
command injection in Sophos web-appliance (CVE-2023-1671). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-9523 The Sophos Web Appliance before 4.3.2 has XSS in the FTP redirect page, aka NSWA-1342.
The Sophos Web Appliance before 4.3.2 has XSS in the FTP redirect page, aka NSWA-1342.
CVE-2017-6182 OS Command Injection in sophos (CVE-2017-6182)
OS command injection in sophos (CVE-2017-6182). Successful exploitation can lead to full system takeover.
CVE-2017-6183 Command Injection in sophos (CVE-2017-6183)
command injection in sophos (CVE-2017-6183). Successful exploitation can lead to full system takeover.
CVE-2017-6184 Command Injection in sophos (CVE-2017-6184)
command injection in sophos (CVE-2017-6184). Risk of unauthorized operations or information disclosure.
CVE-2017-6412 In Sophos Web Appliance (SWA) before 4.3.1.2, Session Fixation could occur, aka NSWA-1310.
In Sophos Web Appliance (SWA) before 4.3.1.2, Session Fixation could occur, aka NSWA-1310.
CVE-2016-9553 Command Injection in sophos (CVE-2016-9553)
command injection in sophos (CVE-2016-9553). Successful exploitation can lead to full system takeover.
CVE-2016-9554 Command Injection in sophos (CVE-2016-9554)
command injection in sophos (CVE-2016-9554). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →