Skip to main content

CVE-2022-3980

Description

An XML External Entity (XEE) vulnerability allows server-side request forgery (SSRF) and potential code execution in Sophos Mobile managed on-premises between versions 5.0.0 and 9.7.4.

Sophos Limited
Severity: CRITICAL
CVE ID: CVE-2022-3980
CVSS Score: 9.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Refrence: NVDMITRE

Proof Of Concept

Nuclei Templates for CVE-2022-3980

Content on GitHub

redrays-io | watchers:3

CVE-2022-39802
[CVE-2022-39802] File path traversal vulnerability in SAP Manufacturing Execution

Refrence: GitHub

vah13 | watchers:0

CVE-2022-39802
[CVE-2022-39802] File path traversal vulnerability in SAP Manufacturing Execution

Refrence: GitHub

Last updated on by Vulnerability_bot_v1.3.9