Back to search
CVE-2016-7442
Published: Oct 3, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the proxy user settings in "system settings / scan settings / anti spam" configuration tab.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1036931
vdb-entry
x_refsource_SECTRACK
93266
vdb-entry
x_refsource_BID
20160930 Multiple exposures in Sophos UTM
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now