CVE-2018-9233

7.8HIGH

Key Information:

Vendor: Sophos
Status: Endpoint Protection
Vendor: CVE Published:; 5 April 2018

Summary

Sophos Endpoint Protection 10.7 uses an unsalted SHA-1 hash for password storage in %PROGRAMDATA%\Sophos\Sophos Anti-Virus\Config\machine.xml, which makes it easier for attackers to determine a cleartext password, and subsequently choose unsafe malware settings, via rainbow tables or other approaches.

References

https://www.exploit-db.com/exploits/44411/

exploitx_refsource_EXPLOIT-DB

http://seclists.org/fulldisclosure/2018/Apr/7

mailing-listx_refsource_FULLDISC

http://hyp3rlinx.altervista.org/advisories/SOPHOS-ENDPOIN...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 5, 2018
Vulnerability Reserved
Apr 3, 2018

Collectors

NVD DatabaseMitre Database

.