The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the proxy user settings in "system settings / scan settings / anti spam" configuration tab.
oryginał ENCVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NSophos Unified Threat Management Software
APPSophos≤ 9.405-5
Powiązane podatności
Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in...
The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5.x, 6.x, an...
Memory leak in the TCP stack in the kernel in Sophos UTM before 9.109 allows remote attackers to cause a denia...
Unspecified vulnerability in WebAdmin in Sophos UTM (aka Astaro Security Gateway) before 9.105 has unknown imp...
The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain s...