GCVE - cpe:2.3:a:sophos:unified_threat_management:9.607:-:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:sophos:unified_threat_management:9.607:-:*:*:*:*:*:*

part: a version: 9.607 update: -

Vendor	Sophos (`a481dca1-298d-56ee-9d5c-373f6e8cead2`)
Product	Unified Threat Management (`4e78f8fd-f009-500b-b35b-78c1da84a1ff`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-25223`	vulnerable	2026-06-03 14:42:08.940591	Details available A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM before v9.705 MR5, v9.607 MR7, and v9.511 MR11 Published: 2020-09-25T00:00:00.000Z Updated: 2025-10-21T23:35:36.271Z Open on db.gcve.eu Reference links https://cwe.mitre.org/data/definitions/78.html https://community.sophos.com/b/security-blog https://community.sophos.com/b/security-blog/posts/advisory-resolved-rce-in-sg-utm-webadmin-cve-2020-25223 http://packetstormsecurity.com/files/164697/Sophos-UTM-WebAdmin-SID-Command-Injection.html https://www.secpod.com/blog/remote-code-execution-in-sophos-utm/	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.