Cyberoam fixes Zero Day Vulnerabilities

Sohphos Cyberoam

Cyberoam fixes Zero Day Vulnerabilities

This is to inform all Cyberoam customers that two zero-day vulnerabilities impacting multiple versions of CyberoamOS have been identified and fixed. Cyberoam advises its users to take note of below information and take recommended action.


Vulnerability Type Impacted CyberoamOS versions
Blind SQL injection  CyberoamOS 10.6.2 GA and earlier
Stacked Query Exploit


Fix and Solution

The vulnerabilities which affect all Cyberoam versions up to 10.6.2 GA, were submitted by Dharmendra Kumar Singh, who is an independent security researcher. As a response, Cyberoam has fixed these vulnerabilities in its latest firmware release (CyberoamOS 10.6.3) and users are advised to upgrade to CyberoamOS 10.6.3 GA as soon as possible.
Explore new Features, Capabilities and Enhancements in CyberoamOS 10.6.3 GA release



Courtesy Cyberoam