CVE-2021-36808 : Security Advisory and Response

A local attacker could bypass the app password using a race condition in Sophos Secure Workspace for Android before version 9.7.3115.

Understanding CVE-2021-36808

This CVE involves a vulnerability in Sophos Secure Workspace for Android that allows a local attacker to bypass the app password using a race condition.

What is CVE-2021-36808?

The CVE-2021-36808 vulnerability occurs in Sophos Secure Workspace for Android versions before 9.7.3115, enabling a local attacker to bypass the app password.

The Impact of CVE-2021-36808

With a CVSS base score of 5.9 and a medium severity rating, CVE-2021-36808 has a high impact on confidentiality and integrity, requiring low privileges for exploitation.

Technical Details of CVE-2021-36808

This section provides technical details and specifics related to CVE-2021-36808.

Vulnerability Description

The vulnerability allows a local attacker to bypass the app password through a race condition in Sophos Secure Workspace for Android before version 9.7.3115.

Affected Systems and Versions

Sophos Secure Workspace for Android versions earlier than 9.7.3115 are impacted by this vulnerability.

Exploitation Mechanism

Exploiting this vulnerability requires physical access and low privileges, making it crucial for users to update to version 9.7.3115 or newer.

Mitigation and Prevention

To protect your system from CVE-2021-36808, follow these mitigation and prevention strategies.

Immediate Steps to Take

Users should update Sophos Secure Workspace for Android to version 9.7.3115 or above to mitigate the vulnerability.

Long-Term Security Practices

Regularly update software and implement security best practices to prevent potential exploitation of vulnerabilities like CVE-2021-36808.

Patching and Updates

Stay informed about security advisories and promptly apply patches released by Sophos to address vulnerabilities.