PT-2021-16491 · Sophos · Sophos Intercept X Advanced+2

Andrea Intilangelo

Published

2021-11-26

Updated

2021-12-03

CVE-2021-25269

CVSS v3.1

4.4

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Sophos Intercept X Advanced versions prior to 2.0.23 Sophos Intercept X Advanced for Server versions prior to 2.0.23 Sophos Exploit Prevention versions prior to 3.8.3

Description: A local administrator could exploit an unquoted service path vulnerability in the HMPA component to prevent the HMPA service from starting despite tamper protection.

Recommendations: For Sophos Intercept X Advanced versions prior to 2.0.23, update to version 2.0.23 or later. For Sophos Intercept X Advanced for Server versions prior to 2.0.23, update to version 2.0.23 or later. For Sophos Exploit Prevention versions prior to 3.8.3, update to version 3.8.3 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-428

Related Identifiers

CVE-2021-25269

Affected Products

Sophos Exploit Prevention

Sophos Intercept X Advanced

Sophos Intercept X Advanced For Server

PT-2021-16491 · Sophos · Sophos Intercept X Advanced+2

CVE-2021-25269

Weakness Enumeration

Related Identifiers

Affected Products

References · 5