Sophos: >> Cyberoam Cr25ing Utm Firmware >> 10.6.2 Security Vulnerabilities
Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 allows remote authenticated users to bypass intended access restrictions via direct object reference, as demonstrated by a request for Licenseinformation.jsp. This is fixed in 10.6.5.
CVSS Score
8.8
EPSS Score
0.025
Published
2017-04-07