Open Redirect Vulnerability in Sophos Email Appliance (Versions Older than 4.5.3.4)

Open Redirect Vulnerability in Sophos Email Appliance (Versions Older than 4.5.3.4)

CVE-2021-36806 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A reflected XSS vulnerability allows an open redirect when the victim clicks a malicious link to an error page on Sophos Email Appliance older than version 4.5.3.4.

Learn more about our Cis Benchmark Audit For Sophos.