Lucene search

CVE-2022-3226

🗓️ 01 Dec 2022 18:10:15Reported by SophosType

OS command injection vuln in Sophos Firewall <v19.5 GA for SSL VPN config upload

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2022-3226	1 Dec 202200:00	–	cvelist
NVD	CVE-2022-3226	1 Dec 202218:15	–	nvd
RedhatCVE	CVE-2022-3226	6 Feb 202500:52	–	redhatcve
Prion	Command injection	1 Dec 202218:15	–	prion

Nvd

Node

sophos xg_firewall_firmwareRange≤19.0

AND

sophos xg_firewallMatch-

[
  {
    "vendor": "Sophos",
    "product": "Sophos Firewall",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "19.5 GA",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "unspecified",
        "lessThan": "19.0 MR2",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "unspecified",
        "lessThan": "18.5 MR5",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
sophos	www.sophos.com/en-us/security-advisories/sophos-sa-20221201-sfos-19-5-0

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Dec 2022 18:15Current

7.3High risk

Vulners AI Score7.3

CVSS37.2

EPSS0.00115

CWE-78