CVE-2022-3696
published 2022-12-01CVE-2022-3696: A post-auth code injection vulnerability allows admins to execute code in Webadmin of Sophos Firewall releases older than version 19.5 GA.
PriorityP341high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
EPSS
1.10%
61.6th percentile
A post-auth code injection vulnerability allows admins to execute code in Webadmin of Sophos Firewall releases older than version 19.5 GA.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| seal-security | mongoose-fixed | >= 5.3.3 < 5.3.4 | 5.3.4 |
| sophos | sophos_firewall | >= unspecified < 19.5 GA | 19.5 GA |
| sophos | sophos_firewall | >= unspecified < 19.0 MR2 | 19.0 MR2 |
| sophos | xg_firewall_firmware | <= 19.0 | — |
CVSS provenance
nvdv3.17.2HIGHCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
ghsa9.1CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Prototype Pollution in ali-security/mongoose
ghsa·2023-10-17·CVSS 9.1
CVE-2023-3696 [CRITICAL] CWE-1321 Prototype Pollution in ali-security/mongoose
Prototype Pollution in ali-security/mongoose
### Impact
This vulnerability causes a Prototype Pollution in document.js, through functions such as findByIdAndUpdate().
For applications using Express and EJS, this can potentially allow remote code execution.
### Patches
The original patched version for mongoose 5.3.3 did not include a fix for CVE-2023-3696. Therefore the existing version @seal-security/mongoose-fixed version 5.3.3 is affected by this vulnerability (though it is protected from CVE-2022-2564 and CVE-2019-17426). To mitigate this issue, a @seal-security/mongoose-fixed version 5.3.4 has been deployed. Note that this version is compatible with the original mongoose version 5.3.3, not version 5.3.4
### References
https://security.snyk.io/vuln/SNYK-JS-MONGOOSE-5777721
https://gi
GHSA
GHSA-x8cr-3jh5-wvwp: A post-auth code injection vulnerability allows admins to execute code in Webadmin of Sophos Firewall older than version 19
ghsa_unreviewed·2022-12-01
CVE-2022-3696 [HIGH] CWE-94 GHSA-x8cr-3jh5-wvwp: A post-auth code injection vulnerability allows admins to execute code in Webadmin of Sophos Firewall older than version 19
A post-auth code injection vulnerability allows admins to execute code in Webadmin of Sophos Firewall older than version 19.5 GA.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-12-01
Published