A pre-auth SQL injection vulnerability in the email protection feature of Sophos Firewall versions older than 21.0 MR1 (21.0.1) allows access to the reporting database and can lead to remote code execution if a specific configuration of Secure PDF eXchange (SPX) is enabled in combination with the firewall running in High Availability (HA) mode.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HSophos Firewall
HWSophoswszystkie wersjeSophos Firewall Firmware
OSSophos< 21.0.1
Related vulnerabilities
A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sop...
Sophos Firewall SPX – pre-auth RCE przez zapis dowolnych plików
SQL Injection w Sophos Firewall SMTP Proxy prowadzące do RCE
Słabe dane uwierzytelniające SSH w Sophos Firewall – nieautoryzowany dostęp uprzywilejowany
A business logic vulnerability in the Up2Date component of Sophos Firewall older than version 21.0 MR1 (20.0.1...