cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-0652,https://securityvulnerability.io/vulnerability/CVE-2022-0652,,"Confd log files contain local users', including root’s, SHA512crypt password hashes with insecure access permissions. This allows a local attacker to attempt off-line brute-force attacks against these password hashes in Sophos UTM before version 9.710.",Sophos,Sophos UTM,7.8,HIGH,0.0004199999966658652,false,false,false,false,,false,false,2022-03-22T00:15:00.000Z,0
CVE-2022-0386,https://securityvulnerability.io/vulnerability/CVE-2022-0386,,A post-auth SQL injection vulnerability in the Mail Manager potentially allows an authenticated attacker to execute code in Sophos UTM before version 9.710.,Sophos,Sophos Utm,8.8,HIGH,0.0008800000068731606,false,false,false,false,,false,false,2022-03-22T00:15:00.000Z,0
CVE-2021-25273,https://securityvulnerability.io/vulnerability/CVE-2021-25273,,Stored XSS can execute as administrator in quarantined email detail view in Sophos UTM before version 9.706.,Sophos,Sophos Utm,4.8,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2021-07-29T19:17:34.000Z,0