Primary

Context

Sophos Intercept X for Windows Registry Permissions Vulnerability Leading to Local Privilege Escalation

Vulnerability

Patched

A vulnerability in the Intercept X for Windows updater prior to version 2024.3.2 allows local users to gain SYSTEM-level privileges during product upgrades, due to improper registry permissions.

Impact

Exploitation of this vulnerability could result in unauthorized local users gaining elevated privileges, allowing them to execute actions or commands with SYSTEM-level rights.

Remediation

Users should upgrade to Sophos Intercept X for Windows version 2024.3.2 or later. For those using Fixed Term Support (FTS) or Long Term Support (LTS) packages, the latest versions can be downloaded from Sophos Central.

Added: Jul 17, 2025, 7:33 PM

Updated: Jul 17, 2025, 10:29 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Sophos Intercept X for Windows Registry Permissions Vulnerability Leading to Local Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Sophos Intercept X

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating