Lucene search
China National Vulnerability DatabaseCNVD-2022-88208HistorySep 28, 2022 - 12:00 a.m.
Sophos Firewall code execution vulnerability
2022-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
19
sophos
firewall
vulnerability
user portal
webadmin
code execution
0.128 Low
EPSS
Percentile
95.5%
Sophos Firewall is a firewall from Sophos UK.Sophos Firewall 19.0.1 and earlier versions are vulnerable to a code execution vulnerability in User Portal and Webadmin that fails to properly filter the special elements of the constructed code segment. An attacker could exploit the vulnerability to cause arbitrary code execution.
| CPE | Name | Operator | Version |
|---|---|---|---|
| sophos sophos firewall | le | 19.0.1 |
Related
cvelist
cvelist
CVE-2022-3236
2022-09-23 12:50:13
githubexploit
githubexploit
Exploit for Injection in Sophos Firewall
2022-12-11 18:16:53
Exploit for Injection in Sophos Firewall
2022-10-15 12:43:46
Exploit for Injection in Sophos Firewall
2022-10-17 08:27:48
cisa_kev
cisa_kev
Sophos Firewall Code Injection Vulnerability
2022-09-23 00:00:00
attackerkb
attackerkb
CVE-2022-3236
2022-09-23 00:00:00
CVE-2022-1040
2022-03-25 00:00:00
cve
cve
CVE-2022-3236
2022-09-23 13:15:10
nessus
nessus
Sophos XG Firewall <= 19.0.1 RCE
2022-11-23 00:00:00
hivepro
hivepro
Sophos Zero-day vulnerability becomes target for attackers
2022-09-30 10:12:52
prion
prion
Code injection
2022-09-23 13:15:00
nvd
nvd
CVE-2022-3236
2022-09-23 13:15:10
thn
thn
qualysblog
qualysblog