9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Sophos Firewall is a firewall from Sophos UK.Sophos Firewall 19.0.1 and earlier versions are vulnerable to a code execution vulnerability in User Portal and Webadmin that fails to properly filter the special elements of the constructed code segment. An attacker could exploit the vulnerability to cause arbitrary code execution.
CPE | Name | Operator | Version |
---|---|---|---|
sophos sophos firewall | le | 19.0.1 |