CVE-2018-4863
First published: Thu Apr 05 2018(Updated: )
Sophos Endpoint Protection 10.7 allows local users to bypass an intended tamper protection mechanism by deleting the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Sophos Endpoint Defense\ registry key.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sophos Endpoint Protection | =10.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-4863?
CVE-2018-4863 is a vulnerability in Sophos Endpoint Protection 10.7 that allows local users to bypass an intended tamper protection mechanism.
How severe is CVE-2018-4863?
CVE-2018-4863 has a severity rating of 5.5 (medium).
How can local users exploit CVE-2018-4863?
Local users can exploit CVE-2018-4863 by deleting the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Sophos Endpoint Defense\ registry key.
What software is affected by CVE-2018-4863?
Sophos Endpoint Protection version 10.7 is affected by CVE-2018-4863.
Are there any references for CVE-2018-4863?
Yes, you can find references for CVE-2018-4863 at the following URLs: [http://hyp3rlinx.altervista.org/advisories/SOPHOS-ENDPOINT-PROTECTION-v10.7-TAMPER-PROTECTION-BYPASS-CVE-2018-4863.txt](http://hyp3rlinx.altervista.org/advisories/SOPHOS-ENDPOINT-PROTECTION-v10.7-TAMPER-PROTECTION-BYPASS-CVE-2018-4863.txt), [http://seclists.org/fulldisclosure/2018/Apr/6](http://seclists.org/fulldisclosure/2018/Apr/6), [https://www.exploit-db.com/exploits/44410/](https://www.exploit-db.com/exploits/44410/)
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sophos
- canonical/sophos endpoint protection
- version/sophos endpoint protection/10.7