Vulnerabilities (CVE)

Filtered by vendor Sophos Subscribe

Filtered by product Hitmanpro.alert

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-25270	1 Sophos	1 Hitmanpro.alert	2022-05-03	7.2 HIGH	6.7 MEDIUM
A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901.
CVE-2018-3970	1 Sophos	1 Hitmanpro.alert	2020-08-24	2.1 LOW	5.5 MEDIUM
An exploitable memory disclosure vulnerability exists in the 0x222000 IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744. A specially crafted IRP request can cause the driver to return uninitialized memory, resulting in kernel memory disclosure. An attacker can send an IRP request to trigger this vulnerability.