Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2022-3980

An XML External Entity (XEE) vulnerability allows server-side request forgery (SSRF) and potential code execution in Sophos Mobile managed on-premises between versions 5.0.0 and 9.7.4.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.865
EPSS Ranking 99.4%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2022-3980
  • Sophos » Mobile » Version: 5.0.0
    cpe:2.3:a:sophos:mobile:5.0.0
  • Sophos » Mobile » Version: 9.7.3
    cpe:2.3:a:sophos:mobile:9.7.3
  • Sophos » Mobile » Version: 9.7.4
    cpe:2.3:a:sophos:mobile:9.7.4


Products
Pricing
Contact Us

Shodan ® - All rights reserved