VYPR
Unrated severityNVD Advisory· Published Sep 4, 2015· Updated Jun 17, 2026

CVE-2015-6811

CVE-2015-6811

Description

SQL injection vulnerability in the Sophos Cyberoam CR500iNG-XP firewall appliance with CyberoamOS 10.6.2 MR-1 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter to login.xml.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:o:cyberoam:cyberoamos:10.6.2:-:*:*:*:*:*:*+ 4 more
    • cpe:2.3:o:cyberoam:cyberoamos:10.6.2:-:*:*:*:*:*:*
    • cpe:2.3:o:cyberoam:cyberoamos:10.6.2:beta1:*:*:*:*:*:*
    • cpe:2.3:o:cyberoam:cyberoamos:10.6.2:beta2:*:*:*:*:*:*
    • cpe:2.3:o:cyberoam:cyberoamos:10.6.2:maintenance_release-1:*:*:*:*:*:*
    • cpe:2.3:o:cyberoam:cyberoamos:10.6.2:rc1:*:*:*:*:*:*
  • Range: <=10.6.2 MR-1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.