Sophos Cyberoamos vulnerabilities
2 known vulnerabilities affecting sophos/cyberoamos.
Total CVEs
2
CISA KEV
1
actively exploited
Public exploits
0
Exploited in wild
1
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2020-29574P1CRITICALCVSS 9.8KEV≤ 2020-12-042020-12-11
CVE-2020-29574 [CRITICAL] CWE-89 CVE-2020-29574: An SQL injection vulnerability in the WebAdmin of Cyberoam OS through 2020-12-04 allows unauthentica
An SQL injection vulnerability in the WebAdmin of Cyberoam OS through 2020-12-04 allows unauthenticated attackers to execute arbitrary SQL statements remotely.
nvd
CVE-2019-17059P2CRITICALCVSS 9.8fixed in 10.6.6v10.6.62019-10-11
CVE-2019-17059 [CRITICAL] CWE-78 CVE-2019-17059: A shell injection vulnerability on the Sophos Cyberoam firewall appliance with CyberoamOS before 10.
A shell injection vulnerability on the Sophos Cyberoam firewall appliance with CyberoamOS before 10.6.6 MR-6 allows remote attackers to execute arbitrary commands via the Web Admin and SSL VPN consoles.
nvd