Sophos Firewall code execution | CVE-2022-1040

March 31, 2022

NAME

Sophos Firewall code execution

  • Platforms Affected:
    Sophos Firewall 18.5 MR3
  • Risk Level:
    9.8
  • Exploitability:
    Unproven
  • Consequences:
    Gain Access

DESCRIPTION

Sophos Firewall could allow a remote attacker to execute arbitrary code on the system, caused by an authentication bypass vulnerability in the User Portal and Webadmin. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVSS 3.0 Information

  • Privileges Required: None
  • User Interaction: None
  • Scope: Unchanged
  • Access Vector: Network
  • Access Complexity: Low
  • Confidentiality Impact: High
  • Integrity Impact: High
  • Availability Impact: High
  • Remediation Level: Official Fix

MITIGATION

Refer to sophos-sa-20220325-sfos-rce for patch, upgrade or suggested workaround information. See References.

  • Reference Link:
    https://www.sophos.com/en-us/security-advisories/sophos-sa-20220325-sfos-rce
  • Reference Link:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1040

If you like the site, please consider joining the telegram channel and supporting us on Patreon using the button below.

Digital Patreon Wordmark FieryCoralv2

You may have missed

hackerone

HackerOne Bug Bounty Disclosure: open-redirect-when-logging-in-with-user-oidc-kesselb

November 15, 2024
hackerone

HackerOne Bug Bounty Disclosure: attachments-folder-for-text-app-is-accessible-on-files-drop-password-protected-shares-lukasreschke

November 15, 2024
hackerone

HackerOne Bug Bounty Disclosure: mail-auto-configurator-can-be-tricked-into-sending-account-information-to-wrong-servers-shushangw

November 15, 2024
hackerone

HackerOne Bug Bounty Disclosure: unauthenticated-phpinfo-files-could-lead-to-ability-file-read-at-h-f-n-ips-mtn-co-ug-offensiveops

November 15, 2024
image

[INCRANSOM] – Ransomware Victim: PHARMATIS-SAS

November 15, 2024