Vulnerability in Sophos Suite

Aug 1, 2021 | CVE, Vulnerability

CVE

CVE-2021-25269

Vulnerable software

HitmanPro.Alert Agent (Sophos Suite) before 3.8.1.504

Vulnerability

An insufficient configuration of the service allows an extension of the rights on system level.

Timeline

  • 19.06.2021 Manufacturer informed
  • 06/21/2021 Vendor confirms the vulnerability and informs HanseSecure that the vulnerability will be patched in the next release.
  • 01.08.2020 Disclosure

References: