Sophos Scanning Engine — known CVE vulnerabilities
Every CVE whose affected-product data names Sophos Scanning Engine, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2007-4577 — CVSS 7.8 (high): Sophos Anti-Virus for Unix/Linux before 2.48.0 allows remote attackers to cause a denial of service (infinite loop) via a malformed BZip…
CVE-2007-4578 — CVSS 6.8 (medium): Sophos Anti-Virus for Windows and for Unix/Linux before 2.48.0 allows remote attackers to cause a denial of service (crash) and possibly…
CVE-2014-1213 — CVSS 5.6 (medium): Sophos Anti-Virus engine (SAVi) before 3.50.1, as used in VDL 4.97G 9.7.x before 9.7.9, 10.0.x before 10.0.11, and 10.3.x before 10.3.1…
CVE-2007-4787 — CVSS 5.0 (medium): The virus detection engine in Sophos Anti-Virus before 2.49.0 does not properly process malformed (1) CAB, (2) LZH, and (3) RAR files with…