cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2020-25223,https://securityvulnerability.io/vulnerability/CVE-2020-25223,,"A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM before v9.705 MR5, v9.607 MR7, and v9.511 MR11",Sophos,Unified Threat Management,9.8,CRITICAL,0.9755200147628784,true,false,false,true,true,false,false,2020-09-25T00:00:00.000Z,0
CVE-2016-7442,https://securityvulnerability.io/vulnerability/CVE-2016-7442,,"The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the ""value"" field of the proxy user settings in ""system settings / scan settings / anti spam"" configuration tab.",Sophos,Unified Threat Management Software,4.4,MEDIUM,0.0005099999834783375,false,false,false,false,,false,false,2016-10-03T16:00:00.000Z,0
CVE-2016-7397,https://securityvulnerability.io/vulnerability/CVE-2016-7397,,"The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the ""value"" field of the SMTP user settings in the notifications configuration tab.",Sophos,Unified Threat Management Software,4.4,MEDIUM,0.0005099999834783375,false,false,false,false,,false,false,2016-10-03T16:00:00.000Z,0
CVE-2016-2046,https://securityvulnerability.io/vulnerability/CVE-2016-2046,,Cross-site scripting (XSS) vulnerability in the UserPortal page in SOPHOS UTM before 9.353 allows remote attackers to inject arbitrary web script or HTML via the lang parameter.,Sophos,Unified Threat Management Software,6.1,MEDIUM,0.0026199999265372753,false,false,false,false,,false,false,2016-02-17T15:00:00.000Z,0
CVE-2015-8605,https://securityvulnerability.io/vulnerability/CVE-2015-8605,,"ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.",Sophos,Unified Threat Management Up2date,6.5,MEDIUM,0.0421300008893013,false,false,false,false,,false,false,2016-01-14T22:00:00.000Z,0
CVE-2016-0777,https://securityvulnerability.io/vulnerability/CVE-2016-0777,,"The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.",Sophos,Unified Threat Management Software,6.5,MEDIUM,0.029039999470114708,false,false,false,false,,false,false,2016-01-14T00:00:00.000Z,0
CVE-2014-2537,https://securityvulnerability.io/vulnerability/CVE-2014-2537,,Memory leak in the TCP stack in the kernel in Sophos UTM before 9.109 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.,Sophos,"Unified Threat Management Software,Unified Threat Management",,,0.011189999990165234,false,false,false,false,,false,false,2014-03-18T14:00:00.000Z,0
CVE-2013-5932,https://securityvulnerability.io/vulnerability/CVE-2013-5932,,Unspecified vulnerability in WebAdmin in Sophos UTM (aka Astaro Security Gateway) before 9.105 has unknown impact and attack vectors.,Sophos,Unified Threat Management Software,,,0.007309999782592058,false,false,false,false,,false,false,2013-09-23T20:00:00.000Z,0