An authentication bypass vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v18.5 MR3 and older.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HSophos Sfos
OSSophos≤ 18.5.3
CISA KEV — detailsi
- Vendori
- Sophos
- Producti
- Firewall
- Added to KEVi
- March 31, 2022
- Remediation deadline (US Federal)i
- April 21, 2022(overdue)
Apply updates per vendor instructions.
An authentication bypass vulnerability in User Portal and Webadmin of Sophos Firewall allows for remote code execution.
Related vulnerabilities
A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall dev...
A heap-based buffer overflow in the awarrensmtp component of Sophos XG Firewall v17.5 MR11 and older potential...
A shell escape vulnerability in /webconsole/Controller in Admin Portal of Sophos XG firewall 17.0.8 MR-8 allow...
A shell escape vulnerability in /webconsole/APIController in the API Configuration component of Sophos XG fire...
SQL injection vulnerability in AccountStatus.jsp in Admin Portal of Sophos XG firewall 17.0.8 MR-8 allow remot...