3 matches found
CVE-2024-12728
creationtimestamp| type| source ---|---|--- 2024-12-19 20:52:09+00:00| seen| https://infosec.exchange/users/cve/statuses/113681467208621916 2024-12-19 21:15:40+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldos634iqp2s 2024-12-19 23:11:06+00:00| seen|...
CVE-2024-12728
A weak credentials vulnerability potentially allows privileged system access via SSH to Sophos Firewall older than version 20.0 MR3 20.0.3...
CVE-2024-12728
CVE-2024-12728 is a weak credentials vulnerability in Sophos Firewall prior to 20.0 MR3 (20.0.3) that could allow privileged SSH access, notably in HA clusters. Affects HA initialisation with non-random passphrases; CVSS 9.8. Remediation: upgrade to 20.0 MR3 or newer (and 21.x MR1+ where applicab...