Known Vulnerabilities for United Threat Management by Sophos

Listed below are 1 of the newest known vulnerabilities associated with "United Threat Management" by "Sophos".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2020-25223 json A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM before v9.705 MR5, v9.607 MR7, and v9.511 MR11 9.8 - CRITICAL 2020-09-25 2023-10-17

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationSophosUnited Threat Management9.705
ApplicationSophosUnited Threat Management9.704
ApplicationSophosUnited Threat Management9.703
ApplicationSophosUnited Threat Management9.702
ApplicationSophosUnited Threat Management9.701
ApplicationSophosUnited Threat Management9.700
ApplicationSophosUnited Threat Management9.607
ApplicationSophosUnited Threat Management9.606
ApplicationSophosUnited Threat Management9.605
ApplicationSophosUnited Threat Management9.604
ApplicationSophosUnited Threat Management9.603
ApplicationSophosUnited Threat Management9.602
ApplicationSophosUnited Threat Management9.601
ApplicationSophosUnited Threat Management9.600
ApplicationSophosUnited Threat Management9.511
ApplicationSophosUnited Threat Management9.510
ApplicationSophosUnited Threat Management9.509
ApplicationSophosUnited Threat Management9.508
ApplicationSophosUnited Threat Management9.507
ApplicationSophosUnited Threat Management9.506
Results limited to 20 most recent known configurations
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report