Primary

Context

Sophos Intercept X for Windows Installer Local Privilege Escalation Vulnerability

Vulnerability

A local privilege escalation vulnerability has been identified in the Sophos Intercept X for Windows installer, affecting versions prior to 1.22. This vulnerability allows a local user to gain system-level privileges if the installer is executed with SYSTEM rights.

Impact

Exploitation of this vulnerability could lead to unauthorized elevation of privileges, allowing a local user to execute actions with system-level rights.

Remediation

Users are advised to upgrade to Sophos Intercept X for Windows Installer version 1.22 or later. For new deployments, replace any existing copies of the installer with one downloaded from Sophos Central after March 6, 2025.

Added: Jul 17, 2025, 7:18 PM

Updated: Jul 17, 2025, 10:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Sophos Intercept X for Windows Installer Local Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating