CVE-2022-3236

Topics Security Off-Prem On-Prem Software Offbeat Vendor Voice Vendor Voice Resources As hundreds of staff axed this week

More than 4,000 public-facing Sophos firewalls remain vulnerable to a critical remote code execution bug disclosed last year and patched months later, according to security researchers. The flaw, CVE-2022-3236, had already been exploited as a zero-day when Sophos published a security advisory about the vulnerability in September 2022. At the time, the vendor said the hole had been abused to target "a small set of specific organizations, primarily in the South Asia region."  The vulnerabilit...

Topics Security Off-Prem On-Prem Software Offbeat Vendor Voice Vendor Voice Resources Code-injection bug in your network security... mmm, yum yum

A critical code-injection vulnerability in Sophos Firewall has been fixed — but not before miscreants found and exploited the bug. The flaw, tracked as CVE-2022-3236, exists in the User Portal and Webadmin components of the firewall in versions 19.0 and older. While it hasn't been issued a CVSS severity score, Sophos deemed it "critical" and noted that it allowed for remote code execution. "Sophos has observed this vulnerability being used to target a small set of specific organizations, ...