3 matches found
CVE-2025-7624
An SQL injection vulnerability in the legacy transparent SMTP proxy of Sophos Firewall versions older than 21.0 MR2 21.0.2 can lead to remote code execution, if a quarantining policy is active for Email and SFOS was upgraded from a version older than 21.0 GA...
CVE-2025-7624
CVE-2025-7624 is a SQL injection vulnerability in the legacy (transparent) SMTP proxy of Sophos Firewall, fixed in 21.0 MR2 (21.0.2) and older versions may allow remote code execution if a quarantining policy is active and SFOS was upgraded from a version older than 21.0 GA. The affected software...
CVE-2025-7624
An SQL injection vulnerability in the legacy transparent SMTP proxy of Sophos Firewall versions older than 21.0 MR2 21.0.2 can lead to remote code execution, if a quarantining policy is active for Email and SFOS was upgraded from a version older than 21.0 GA...