VYPR

Firewall

by Endian

CVEs (43)

  • CVE-2020-15504Jul 10, 2020
    risk 0.00cvss epss 0.02

    A SQL injection vulnerability in the user and admin web interfaces of Sophos XG Firewall v18.0 MR1 and older potentially allows an attacker to run arbitrary code remotely. The fix is built into the re-release of XG Firewall v18 MR-1 (named MR-1-Build396) and the v17.5 MR13…

  • CVE-2020-11503Jun 18, 2020
    risk 0.00cvss epss 0.01

    A heap-based buffer overflow in the awarrensmtp component of Sophos XG Firewall v17.5 MR11 and older potentially allows an attacker to run arbitrary code remotely.

  • CVE-2008-0494Jan 30, 2008
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in vpnum/userslist.php in Endian Firewall 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the psearch parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third…

Page 3 of 3