CVE-2013-2641

Currently unrated

Key Information:

Vendor
Sophos
Status
Web Appliance Firmware
Web Appliance
Vendor
CVE Published:
18 March 2014

Summary

Directory traversal vulnerability in patience.cgi in Sophos Web Appliance before 3.7.8.2 allows remote attackers to read arbitrary files via the id parameter.

References

https://www.sec-consult.com/fxdata/seccons/prod/temedia/a...
x_refsource_MISC
http://www.sophos.com/en-us/support/knowledgebase/118969....
x_refsource_CONFIRM

EPSS Score

90% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.