CVE-2021-36809

low-risk

Published 2022-03-08

A local attacker can overwrite arbitrary files on the system with VPN client logs using administrator privileges, potentially resulting in a denial of service and data loss, in all versions of Sophos SSL VPN client.

Do I need to act?

0.05% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.1/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Ssl Vpn Client

Affected Vendors

Sophos

References (2)

Vendor Advisory https://www.sophos.com/en-us/security-advisories/sophos-sa-20220303-sslvpn-local...

/ 100

low-risk

Severity 20/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal