cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-12729,https://securityvulnerability.io/vulnerability/CVE-2024-12729,Remote Code Execution Risk in Sophos Firewall User Portal,"CVE-2024-12729 is a serious post-authentication code injection vulnerability identified in the User Portal of Sophos Firewall. This flaw allows authenticated users to execute arbitrary code remotely, potentially compromising the security and integrity of the device and the network it protects. This issue affects versions of Sophos Firewall that are older than 21.0 MR1 (21.0.1), emphasizing the critical need for users to update their systems to the latest version. For more details, please refer to the official advisory from Sophos.",Sophos,Sophos Firewall,8.8,HIGH,0.0004299999854993075,false,true,false,false,,false,false,2024-12-19T20:58:52.187Z,106
CVE-2024-12728,https://securityvulnerability.io/vulnerability/CVE-2024-12728,Weak Credentials Vulnerability in Sophos Firewall Affecting Older Versions,"CVE-2024-12728 is a significant weak credentials vulnerability identified in Sophos Firewall, affecting all versions prior to 20.0 MR3 (20.0.3). This vulnerability potentially allows unauthorized users to achieve privileged system access via secure shell (SSH) protocols. Organizations utilizing these affected versions are strongly advised to upgrade to the latest software version to mitigate risks of unauthorized access and potential exploitation. For more information and guidance, visit the official Sophos security advisory.",Sophos,Sophos Firewall,9.8,CRITICAL,0.0004299999854993075,false,true,false,true,,false,false,2024-12-19T20:48:53.477Z,0
CVE-2024-12727,https://securityvulnerability.io/vulnerability/CVE-2024-12727,Pre-Authentication SQL Injection Vulnerability in Sophos Firewall,"CVE-2024-12727 presents a critical pre-authentication SQL injection vulnerability within the email protection feature of Sophos Firewall, specifically affecting versions prior to 21.0 MR1 (21.0.1). When exploited, this vulnerability allows an attacker to access the reporting database, providing a pathway for remote code execution, particularly under certain configurations of the Secure PDF eXchange (SPX) feature in conjunction with the firewall's High Availability (HA) mode. Organizations utilizing the affected versions are strongly advised to upgrade to prevent potential exploitation.",Sophos,Sophos Firewall,9.8,CRITICAL,0.0004299999854993075,false,true,false,true,,false,false,2024-12-19T20:26:59.325Z,459
CVE-2023-5552,https://securityvulnerability.io/vulnerability/CVE-2023-5552,,"A password disclosure vulnerability in the Secure PDF eXchange (SPX) feature allows attackers with full email access to decrypt PDFs in Sophos Firewall version 19.5 MR3 (19.5.3) and older, if the password type is set to “Specified by sender”.",Sophos,Sophos Firewall,7.1,HIGH,0.0013500000350177288,false,false,false,false,,false,false,2023-10-18T00:15:00.000Z,0
CVE-2022-3710,https://securityvulnerability.io/vulnerability/CVE-2022-3710,,A post-auth read-only SQL injection vulnerability allows API clients to read non-sensitive configuration database contents in the API controller of Sophos Firewall releases older than version 19.5 GA.,Sophos,Sophos Firewall,2.7,LOW,0.000539999979082495,false,false,false,false,,false,false,2022-12-01T00:00:00.000Z,0
CVE-2022-3226,https://securityvulnerability.io/vulnerability/CVE-2022-3226,,An OS command injection vulnerability allows admins to execute code via SSL VPN configuration uploads in Sophos Firewall releases older than version 19.5 GA.,Sophos,Sophos Firewall,7.2,HIGH,0.0011500000255182385,false,false,false,false,,false,false,2022-12-01T00:00:00.000Z,0
CVE-2022-3709,https://securityvulnerability.io/vulnerability/CVE-2022-3709,,A stored XSS vulnerability allows admin to super-admin privilege escalation in the Webadmin import group wizard of Sophos Firewall releases older than version 19.5 GA.,Sophos,Sophos Firewall,6.8,MEDIUM,0.0010400000028312206,false,false,false,false,,false,false,2022-12-01T00:00:00.000Z,0
CVE-2022-3711,https://securityvulnerability.io/vulnerability/CVE-2022-3711,,A post-auth read-only SQL injection vulnerability allows users to read non-sensitive configuration database contents in the User Portal of Sophos Firewall releases older than version 19.5 GA.,Sophos,Sophos Firewall,4.3,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2022-12-01T00:00:00.000Z,0
CVE-2022-3713,https://securityvulnerability.io/vulnerability/CVE-2022-3713,,A code injection vulnerability allows adjacent attackers to execute code in the Wifi controller of Sophos Firewall releases older than version 19.5 GA.,Sophos,Sophos Firewall,8.8,HIGH,0.0007699999841861427,false,false,false,false,,false,false,2022-12-01T00:00:00.000Z,0
CVE-2022-3696,https://securityvulnerability.io/vulnerability/CVE-2022-3696,,A post-auth code injection vulnerability allows admins to execute code in Webadmin of Sophos Firewall releases older than version 19.5 GA.,Sophos,Sophos Firewall,7.2,HIGH,0.0010999999940395355,false,false,false,false,,false,false,2022-12-01T00:00:00.000Z,0
CVE-2022-3236,https://securityvulnerability.io/vulnerability/CVE-2022-3236,,A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v19.0 MR1 and older.,Sophos,Sophos Firewall,9.8,CRITICAL,0.10021000355482101,true,false,false,true,,false,false,2022-09-23T12:50:13.000Z,0
CVE-2022-1807,https://securityvulnerability.io/vulnerability/CVE-2022-1807,,Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 18.5 MR4 and version 19.0 MR1.,Sophos,Sophos Firewall,7.2,HIGH,0.0010400000028312206,false,false,false,false,,false,false,2022-09-07T18:00:14.000Z,0
CVE-2021-25268,https://securityvulnerability.io/vulnerability/CVE-2021-25268,,Multiple XSS vulnerabilities in Webadmin allow for privilege escalation from MySophos admin to SFOS admin in Sophos Firewall older than version 19.0 GA.,Sophos,Sophos Firewall,8.4,HIGH,0.0010400000028312206,false,false,false,false,,false,false,2022-05-05T18:05:13.000Z,0
CVE-2021-25267,https://securityvulnerability.io/vulnerability/CVE-2021-25267,,Multiple XSS vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 19.0 GA.,Sophos,Sophos Firewall,6.8,MEDIUM,0.0010400000028312206,false,false,false,false,,false,false,2022-05-05T18:05:12.000Z,0
CVE-2022-0331,https://securityvulnerability.io/vulnerability/CVE-2022-0331,,An information disclosure vulnerability in Webadmin allows an unauthenticated remote attacker to read the device serial number in Sophos Firewall version v18.5 MR2 and older.,Sophos,Sophos Firewall,5.3,MEDIUM,0.001449999981559813,false,false,false,false,,false,false,2022-03-29T00:30:13.000Z,0
CVE-2022-1040,https://securityvulnerability.io/vulnerability/CVE-2022-1040,,An authentication bypass vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v18.5 MR3 and older.,Sophos,Sophos Firewall,9.8,CRITICAL,0.9700899720191956,true,false,false,true,true,false,false,2022-03-25T12:10:10.000Z,0