CVE-2021-25269
4.4
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Summary
A local administrator could prevent the HMPA service from starting despite tamper protection using an unquoted service path vulnerability in the HMPA component of Sophos Intercept X Advanced and Sophos Intercept X Advanced for Server before version 2.0.23, as well as Sophos Exploit Prevention before version 3.8.3.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Sophos | Intercept X Advanced | unspecified < 2.0.23 | affected |
| Sophos | Intercept X Advanced for Server | unspecified < 2.0.23 | affected |
| Sophos | Sophos Exploit Prevention | unspecified < 3.8.3 | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.