CVE-2025-7433

Published Jul 17, 2025

Last updated 8 months ago

CVSS high 8.8

Overview

Description
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution.
Source
security-alert@sophos.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.8
Impact score
6
Exploitability score
2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Severity
HIGH

Weaknesses

security-alert@sophos.com
CWE-502

Social media

Hype score
Not currently trending

  1. ⚠️Vulnerabilidades de Sophos Intercept X ❗CVE-2025-7433 ❗CVE-2024-13972 ❗CVE-2025-7472 ➡️Más info: https://t.co/Z7Ik926PBu https://t.co/Zkfl5Rh8rr

    @CERTpy

    22 Jul 2025

    121 Impressions

    0 Retweets

    1 Like

    1 Bookmark

    0 Replies

    0 Quotes

  2. 2025-07-18 の人気記事はコチラでした。(自動ツイート) #Hacker_Trends ――― Resolved Multiple Vulnerabilities in Sophos Intercept X for Windows (CVE-2024-13972, CVE-2025-7433, CVE-2025-7472) | Sophos https://t.co/vzySv8AHYW https://t.co/HgeMr9fDRx

    @motikan2010

    19 Jul 2025

    62 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. 🩸My 2nd LPE (CVE-2025-7433) in Sophos EDR/XDR is finally out! https://t.co/urVpsGIS0d https://t.co/5NUNIOwBp5

    @SinSinology

    18 Jul 2025

    10266 Impressions

    27 Retweets

    180 Likes

    26 Bookmarks

    1 Reply

    0 Quotes

  4. CVE-2025-7433 Local Privilege Escalation in Sophos Intercept X for Windows Central Device Encryption https://t.co/fHdvDQZhIW

    @VulmonFeeds

    17 Jul 2025

    16 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. [CVE-2025-7433: HIGH] A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution.#cve,CVE-2025-7433,#cybersecurity https://t.co/h5HVBARJzO https://t.co/4DxGVZZ9XM

    @CveFindCom

    17 Jul 2025

    41 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. CVE-2025-7433 A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution. https://t.co/0yI3orXOaT

    @CVEnew

    17 Jul 2025

    221 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.