CVE Vulnerabilities

CVE-2020-9363

Interpretation Conflict

Published: Feb 24, 2020 | Modified: Apr 18, 2022
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The Sophos AV parsing engine before 2020-01-14 allows virus-detection bypass via a crafted ZIP archive. This affects Endpoint Protection, Cloud Optix, Mobile, Intercept X Endpoint, Intercept X for Server, and Secure Web Gateway. NOTE: the vendor feels that this does not apply to endpoint-protection products because the virus would be detected upon extraction.

Weakness

Product A handles inputs or steps differently than Product B, which causes A to perform incorrect actions based on its perception of B’s state.

Affected Software

Name Vendor Start Version End Version
Cloud_optix Sophos * 2020-01-14 (excluding)
Endpoint_protection Sophos * 2020-01-14 (excluding)
Intercept_x_endpoint Sophos * 2020-01-14 (excluding)
Intercept_x_for_server Sophos * 2020-01-14 (excluding)
Mobile Sophos * 2020-01-14 (excluding)
Secure_web_gateway Sophos * 2020-01-14 (excluding)

References