CVE-2020-29574 — Actively Exploited: CyberoamOS (Sophos)
CyberoamOS (CROS) contains a SQL injection vulnerability in the WebAdmin that allows an unauthenticated attacker to execute arbitrary SQL statements remotely.
| CVE ID | CVE-2020-29574 |
|---|---|
| Vendor | Sophos |
| Product | CyberoamOS |
| Vulnerability name | CyberoamOS (CROS) SQL Injection Vulnerability |
| Date added | 2025-02-06 |
| Remediation due | 2025-02-27 |
| Known ransomware use | Unknown |
| Required action | The impacted product is end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue utilization of the product. |
| Description | CyberoamOS (CROS) contains a SQL injection vulnerability in the WebAdmin that allows an unauthenticated attacker to execute arbitrary SQL statements remotely. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →