Sophos - Unified Threat Management CVE

Filtered by vendor Sophos Subscribe

Filtered by product Unified Threat Management

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-0652	1 Sophos	1 Unified Threat Management	2023-08-08	2.1 LOW	7.8 HIGH
Confd log files contain local users', including rootâ€™s, SHA512crypt password hashes with insecure access permissions. This allows a local attacker to attempt off-line brute-force attacks against these password hashes in Sophos UTM before version 9.710.

Vulnerabilities (CVE)