Sophos Sfos vulnerabilities
8 known vulnerabilities affecting sophos/sfos.
Total CVEs
8
CISA KEV
2
actively exploited
Public exploits
1
Exploited in wild
2
Severity breakdown
CRITICAL3HIGH3MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-1040P1CRITICALCVSS 9.8KEVPoCRansomware≤ 18.5.32022-03-25
CVE-2022-1040 [CRITICAL] CVE-2022-1040: An authentication bypass vulnerability in the User Portal and Webadmin allows a remote attacker to e
An authentication bypass vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v18.5 MR3 and older.
nvd
CVE-2020-12271P1CRITICALCVSS 9.8KEVRansomwarev17.0v17.1+2 more2020-04-27
CVE-2020-12271 [CRITICAL] CWE-89 CVE-2020-12271: A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Fi
A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall devices, as exploited in the wild in April 2020. This affected devices configured with either the administration (HTTPS) service or the User Portal exposed on the WAN zone. A successful attack may have caused remote code execution that exfiltr
nvd
CVE-2018-16117P2HIGHCVSS 8.8≤ 17.0v17.12019-06-20
CVE-2018-16117 [HIGH] CWE-78 CVE-2018-16117: A shell escape vulnerability in /webconsole/Controller in Admin Portal of Sophos XG firewall 17.0.8
A shell escape vulnerability in /webconsole/Controller in Admin Portal of Sophos XG firewall 17.0.8 MR-8 allow remote authenticated attackers to execute arbitrary OS commands via shell metacharacters in the "dbName" POST parameter.
nvd
CVE-2018-16118P3HIGHCVSS 8.1≤ 16.0v16.5+3 more2019-06-20
CVE-2018-16118 [HIGH] CWE-78 CVE-2018-16118: A shell escape vulnerability in /webconsole/APIController in the API Configuration component of Soph
A shell escape vulnerability in /webconsole/APIController in the API Configuration component of Sophos XG firewall 17.0.8 MR-8 allows remote attackers to execute arbitrary OS commands via shell metachracters in the "X-Forwarded-for" HTTP header.
nvd
CVE-2018-16116P3HIGHCVSS 8.8v17.0.82019-06-20
CVE-2018-16116 [HIGH] CWE-89 CVE-2018-16116: SQL injection vulnerability in AccountStatus.jsp in Admin Portal of Sophos XG firewall 17.0.8 MR-8 a
SQL injection vulnerability in AccountStatus.jsp in Admin Portal of Sophos XG firewall 17.0.8 MR-8 allow remote authenticated attackers to execute arbitrary SQL commands via the "username" GET parameter.
nvd
CVE-2020-11503P3CRITICALCVSS 9.8fixed in 17.5v17.52020-06-18
CVE-2020-11503 [CRITICAL] CWE-787 CVE-2020-11503: A heap-based buffer overflow in the awarrensmtp component of Sophos XG Firewall v17.5 MR11 and older
A heap-based buffer overflow in the awarrensmtp component of Sophos XG Firewall v17.5 MR11 and older potentially allows an attacker to run arbitrary code remotely.
nvd
CVE-2017-18014P4MEDIUMCVSS 6.1≤ 17.0v17.02018-01-12
CVE-2017-18014 [MEDIUM] CWE-79 CVE-2017-18014: An NC-25986 issue was discovered in the Logging subsystem of Sophos XG Firewall with SFOS before 17.
An NC-25986 issue was discovered in the Logging subsystem of Sophos XG Firewall with SFOS before 17.0.3 MR3. An unauthenticated user can trigger a persistent XSS vulnerability found in the WAF log page (Control Center -> Log Viewer -> in the filter option "Web Server Protection") in the webadmin interface, and execute any action available to the weba
nvd
CVE-2022-0331P4MEDIUMCVSS 5.3≤ 18.5.22022-03-29
CVE-2022-0331 [MEDIUM] CVE-2022-0331: An information disclosure vulnerability in Webadmin allows an unauthenticated remote attacker to rea
An information disclosure vulnerability in Webadmin allows an unauthenticated remote attacker to read the device serial number in Sophos Firewall version v18.5 MR2 and older.
nvd