Webadmin Information Disclosure Vulnerability in Sophos Firewall v18.5 MR2 and Older

Webadmin Information Disclosure Vulnerability in Sophos Firewall v18.5 MR2 and Older

CVE-2022-0331 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

An information disclosure vulnerability in Webadmin allows an unauthenticated remote attacker to read the device serial number in Sophos Firewall version v18.5 MR2 and older.

Learn more about our Web App Pen Testing.