Описание
A local administrator could prevent the HMPA service from starting despite tamper protection using an unquoted service path vulnerability in the HMPA component of Sophos Intercept X Advanced and Sophos Intercept X Advanced for Server before version 2.0.23, as well as Sophos Exploit Prevention before version 3.8.3.
Уязвимые конфигурации
Конфигурация 1Версия до 3.8.3 (исключая)Версия до 2.0.23 (исключая)Версия до 2.0.23 (исключая)
Одно из
cpe:2.3:a:sophos:exploit_prevention:*:*:*:*:*:*:*:*
cpe:2.3:a:sophos:intercept_x_endpoint:*:*:*:*:*:*:*:*
cpe:2.3:a:sophos:intercept_x_for_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 17%
0.00054
Низкий
4.4 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-428
Связанные уязвимости
github
около 4 лет назад
A local administrator could prevent the HMPA service from starting despite tamper protection using an unquoted service path vulnerability in the HMPA component of Sophos Intercept X Advanced and Sophos Intercept X Advanced for Server before version 2.0.23, as well as Sophos Exploit Prevention before version 3.8.3.
EPSS
Процентиль: 17%
0.00054
Низкий
4.4 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-428