Vulnerabilities > CVE-2022-1040 - Unspecified vulnerability in Sophos Sfos
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
An authentication bypass vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v18.5 MR3 and older.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 35 |
Related news
- Critical Sophos Firewall vulnerability allows remote code execution (source)
- Critical Sophos Security Bug Allows RCE on Firewalls (source)
- Attackers are exploiting recently patched RCE in Sophos Firewall (CVE-2022-1040) (source)
- Critical Sophos Firewall RCE Vulnerability Under Active Exploitation (source)
- Sophos Firewall zero-day bug exploited weeks before fix (source)
References
- http://packetstormsecurity.com/files/168046/Sophos-XG115w-Firewall-17.0.10-MR-10-Authentication-Bypass.html
- http://packetstormsecurity.com/files/168046/Sophos-XG115w-Firewall-17.0.10-MR-10-Authentication-Bypass.html
- https://www.exploit-db.com/exploits/51006
- https://www.exploit-db.com/exploits/51006
- https://www.sophos.com/en-us/security-advisories/sophos-sa-20220325-sfos-rce
- https://www.sophos.com/en-us/security-advisories/sophos-sa-20220325-sfos-rce