vulnerability
Sophos Sophos Intercept X for MacOS: CVE-2021-25264: Resolved LPE in Endpoint for MacOS
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | May 7, 2021 | Mar 26, 2025 | Feb 11, 2026 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
May 7, 2021
Added
Mar 26, 2025
Modified
Feb 11, 2026
Description
A local privilege escalation vulnerability in Sophos Endpoint products for MacOS was recently discovered and responsibly disclosed to Sophos. It was reported via the Sophos bug bounty program by an external security researcher. The vulnerability has been fixed. Sophos would like to thank Csaba Fitzl (@theevilbit) of Offensive Security for responsibly disclosing this issue to Sophos. The remediation prevented local users from executing arbitrary code with administrator privileges. There was no evidence that the vulnerability was exploited and to our knowledge no customers are impacted. There is no action required for customers, as updates are installed automatically by default.
Solution
sophos-sophos-intercept-x-for-macos-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.