Back to search
CVE-2014-2005
Published: Jun 25, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
Sophos Disk Encryption (SDE) 5.x in Sophos Enterprise Console (SEC) 5.x before 5.2.2 does not enforce intended authentication requirements for a resume action from sleep mode, which allows physically proximate attackers to obtain desktop access by leveraging the absence of a login screen.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
JVNDB-2014-000061
third-party-advisory
x_refsource_JVNDB
http://www.sophos.com/en-us/support/knowledgebase/121066.aspx
x_refsource_CONFIRM
JVN#63940326
third-party-advisory
x_refsource_JVN
68169
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now