Remote Code Execution Vulnerability in Sophos Firewall v19.0 MR1 and Older

Remote Code Execution Vulnerability in Sophos Firewall v19.0 MR1 and Older

CVE-2022-3236 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v19.0 MR1 and older.

Learn more about our Web App Pen Testing.