Vulnerability Details CVE-2021-25265
A malicious website could execute code remotely in Sophos Connect Client before version 2.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 48.0%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- https://community.sophos.com/b/security-blog
- https://community.sophos.com/b/security-blog/posts/resolved-rce-in-sophos-connect-client-for-windows-cve-2021-25265
- https://community.sophos.com/b/security-blog
- https://community.sophos.com/b/security-blog/posts/resolved-rce-in-sophos-connect-client-for-windows-cve-2021-25265