Sophos: >> Intercept X Security Vulnerabilities
An insecure data storage vulnerability allows a physical attacker with root privileges to retrieve TOTP secret keys from unlocked phones in Sophos Authenticator for Android version 3.4 and older, and Intercept X for Mobile (Android) before version 9.7.3495.
CVSS Score
3.9
EPSS Score
0.001
Published
2022-04-27
In multiple versions of Sophos Endpoint products for MacOS, a local attacker could execute arbitrary code with administrator privileges.
CVSS Score
6.7
EPSS Score
0.0
Published
2021-05-17