Cyberoam fixes Zero Day Vulnerabilities
This is to inform all Cyberoam customers that two zero-day vulnerabilities impacting multiple versions of CyberoamOS have been identified and fixed. Cyberoam advises its users to take note of below information and take recommended action.
|Vulnerability Type||Impacted CyberoamOS versions|
|Blind SQL injection||CyberoamOS 10.6.2 GA and earlier|
|Stacked Query Exploit|
Fix and Solution
The vulnerabilities which affect all Cyberoam versions up to 10.6.2 GA, were submitted by Dharmendra Kumar Singh, who is an independent security researcher. As a response, Cyberoam has fixed these vulnerabilities in its latest firmware release (CyberoamOS 10.6.3) and users are advised to upgrade to CyberoamOS 10.6.3 GA as soon as possible.
Explore new Features, Capabilities and Enhancements in CyberoamOS 10.6.3 GA release