Insecure Access Permissions in Confd Log Files Allow Offline Brute-Force Attacks on Password Hashes in Sophos UTM (Before Version 9.710)

Insecure Access Permissions in Confd Log Files Allow Offline Brute-Force Attacks on Password Hashes in Sophos UTM (Before Version 9.710)

CVE-2022-0652 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Confd log files contain local users', including root’s, SHA512crypt password hashes with insecure access permissions. This allows a local attacker to attempt off-line brute-force attacks against these password hashes in Sophos UTM before version 9.710.

Learn more about our Cis Benchmark Audit For Sophos.