Every CVE whose affected-product data names Sophos Mobile, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-3980 — CVSS 9.8 (critical): An XML External Entity (XEE) vulnerability allows server-side request forgery (SSRF) and potential code execution in Sophos Mobile managed…
CVE-2020-9363 — CVSS 7.8 (high): The Sophos AV parsing engine before 2020-01-14 allows virus-detection bypass via a crafted ZIP archive. This affects Endpoint Protection…