Sophos Unified Threat Management (UTM) Software 9.319

CPE Details

Sophos Unified Threat Management (UTM) Software 9.319
sophos
unified_threat_management_software
9.319
2016-04-25
13h58 +00:00
2016-04-25
13h58 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:sophos:unified_threat_management_software:9.319:*:*:*:*:*:*:*

Informations

Vendor

sophos

Product

unified_threat_management_software

Version

9.319

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2016-7397 2016-10-03 14h00 +00:00 The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the SMTP user settings in the notifications configuration tab.
4.4
Medium
CVE-2016-7442 2016-10-03 14h00 +00:00 The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the proxy user settings in "system settings / scan settings / anti spam" configuration tab.
4.4
Medium
CVE-2015-7547 2016-02-18 20h00 +00:00 Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.
8.1
High
CVE-2016-2046 2016-02-17 14h00 +00:00 Cross-site scripting (XSS) vulnerability in the UserPortal page in SOPHOS UTM before 9.353 allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
6.1
Medium