Sophos Hitmanpro Alert
By the Year
In 2024 there have been 0 vulnerabilities in Sophos Hitmanpro Alert . Hitmanpro Alert did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 1 | 6.70 |
2020 | 1 | 7.80 |
2019 | 0 | 0.00 |
2018 | 2 | 6.65 |
It may take a day or so for new Hitmanpro Alert vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Sophos Hitmanpro Alert Security Vulnerabilities
A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901.
CVE-2021-25270
6.7 - Medium
- October 08, 2021
A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901.
Sophos HitmanPro.Alert before build 861
CVE-2020-9540
7.8 - High
- March 02, 2020
Sophos HitmanPro.Alert before build 861 allows local elevation of privilege.
Improper Privilege Management
An exploitable memory disclosure vulnerability exists in the 0x222000 IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744
CVE-2018-3970
5.5 - Medium
- October 25, 2018
An exploitable memory disclosure vulnerability exists in the 0x222000 IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744. A specially crafted IRP request can cause the driver to return uninitialized memory, resulting in kernel memory disclosure. An attacker can send an IRP request to trigger this vulnerability.
Use of Uninitialized Resource
An exploitable arbitrary write vulnerability exists in the 0x2222CC IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744
CVE-2018-3971
7.8 - High
- October 25, 2018
An exploitable arbitrary write vulnerability exists in the 0x2222CC IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744. A specially crafted IRP request can cause the driver to write data under controlled by an attacker address, resulting in memory corruption. An attacker can send IRP request to trigger this vulnerability.
Write-what-where Condition
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Sophos Hitmanpro Alert or by Sophos? Click the Watch button to subscribe.