CVE-2013-2641
Directory traversal vulnerability in patience.cgi in Sophos Web Appliance before 3.7.8.2 allows remote attackers to read arbitrary files via the id parameter.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.8235 (82.3%)
Percentile: 99.2%
EPSS: 2026-05-06
Affects
sophos:web_appliance_firmwaresophos:web_applianceTechnical description
Directory traversal vulnerability in patience.cgi in Sophos Web Appliance before 3.7.8.2 allows remote attackers to read arbitrary files via the id parameter.
Published: 3/18/2014, 5:02:51 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://www.sophos.com/en-us/support/knowledgebase/118969.aspx
- https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20130403-0_Sophos_Web_Protection_Appliance_Multiple_Vulnerabilities.txt
- http://www.sophos.com/en-us/support/knowledgebase/118969.aspx
- https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20130403-0_Sophos_Web_Protection_Appliance_Multiple_Vulnerabilities.txt