Sophos Hitmanpro Alert

Do you want an email whenever new security vulnerabilities are reported in Sophos Hitmanpro Alert?

By the Year

In 2024 there have been 0 vulnerabilities in Sophos Hitmanpro Alert . Hitmanpro Alert did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2024	0	0.00
2023	0	0.00
2022	0	0.00
2021	1	6.70
2020	1	7.80
2019	0	0.00
2018	2	6.65

It may take a day or so for new Hitmanpro Alert vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Sophos Hitmanpro Alert Security Vulnerabilities

A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901.

CVE-2021-25270 6.7 - Medium - October 08, 2021

A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901.

Sophos HitmanPro.Alert before build 861

CVE-2020-9540 7.8 - High - March 02, 2020

Sophos HitmanPro.Alert before build 861 allows local elevation of privilege.

Improper Privilege Management

An exploitable memory disclosure vulnerability exists in the 0x222000 IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744

CVE-2018-3970 5.5 - Medium - October 25, 2018

An exploitable memory disclosure vulnerability exists in the 0x222000 IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744. A specially crafted IRP request can cause the driver to return uninitialized memory, resulting in kernel memory disclosure. An attacker can send an IRP request to trigger this vulnerability.

Use of Uninitialized Resource

An exploitable arbitrary write vulnerability exists in the 0x2222CC IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744

CVE-2018-3971 7.8 - High - October 25, 2018

An exploitable arbitrary write vulnerability exists in the 0x2222CC IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744. A specially crafted IRP request can cause the driver to write data under controlled by an attacker address, resulting in memory corruption. An attacker can send IRP request to trigger this vulnerability.

Write-what-where Condition

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Sophos Hitmanpro Alert or by Sophos? Click the Watch button to subscribe.

Sophos
Vendor

Sophos Hitmanpro Alert
Product

By the Year

Recent Sophos Hitmanpro Alert Security Vulnerabilities

A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901. CVE-2021-25270 6.7 - Medium - October 08, 2021

Sophos HitmanPro.Alert before build 861 CVE-2020-9540 7.8 - High - March 02, 2020

An exploitable memory disclosure vulnerability exists in the 0x222000 IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744 CVE-2018-3970 5.5 - Medium - October 25, 2018

An exploitable arbitrary write vulnerability exists in the 0x2222CC IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744 CVE-2018-3971 7.8 - High - October 25, 2018