Описание
The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the proxy user settings in "system settings / scan settings / anti spam" configuration tab.
Уязвимые конфигурации
Конфигурация 1Версия до 9.405-5 (включая)
cpe:2.3:a:sophos:unified_threat_management_software:*:*:*:*:*:*:*:*
EPSS
Процентиль: 7%
0.00027
Низкий
4.4 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 4.4
github
больше 3 лет назад
The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the proxy user settings in "system settings / scan settings / anti spam" configuration tab.
EPSS
Процентиль: 7%
0.00027
Низкий
4.4 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-200