3 matches found
PT-2022-4853
Name of the Vulnerable Software and Affected Versions Sophos Firewall versions prior to v19.0 MR1 Description A code injection vulnerability in the User Portal and Webadmin of Sophos Firewall allows a remote attacker to execute code. The vulnerability is being actively exploited by hackers in...
CVE-2022-1807
Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 18.5 MR4 and version 19.0 MR1...
CVE-2022-1807
Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 18.5 MR4 and version 19.0 MR1...