CyberSec.Space Logo
CVEブラウザに戻る

CVE-2012-4736

LOW
3.3
CVSS Severity Score
EPSS Score0.1890%
EPSS Percentile9.49th
Published2012年8月29日
Last Modified2026年4月29日

Vulnerability Description

The Device Encryption Client component in Sophos SafeGuard Enterprise 6.0, when a volume-based encryption policy is enabled in conjunction with a user-defined key, does not properly block use of exFAT USB flash drives, which makes it easier for local users to bypass intended access restrictions and copy sensitive information to a drive via multiple removal and reattach operations.

Affected Platforms (CPE)

📦
Sophos

Safeguard Enterprise

= 6.0

References & Advisories

🔗 http://www.sophos.com/support/knowledgebase/1376/1380/114138.aspx
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/78580
🔗 http://www.sophos.com/support/knowledgebase/1376/1380/114138.aspx
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/78580

関連する脆弱性情報

CVE-2018-68517.8

Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before 7.00.3, and SafeGuard LAN Crypt before 3.95.2 are vulnerable to L...

CVE-2018-68527.8

Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before 7.00.3, and SafeGuard LAN Crypt before 3.95.2 are vulnerable to L...

CVE-2018-68537.8

Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before 7.00.3, and SafeGuard LAN Crypt before 3.95.2 are vulnerable to L...

CVE-2018-68547.8

Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before 7.00.3, and SafeGuard LAN Crypt before 3.95.2 are vulnerable to L...

CVE-2012-4736 Detail & Impact Analysis | CVSS 3.3 (LOW) | Cyber-Sec.Space | Cyber-Sec.Space