CVE-2020-15069

Warning

EPSS 66.81%
Published 29.06.2020 18:15:12
Last modified 03.04.2025 20:05:52
Source cve@mitre.org
Teams watchlist Login
Open Login

Sophos XG Firewall 17.x through v17.5 MR12 allows a Buffer Overflow and remote code execution via the HTTP/S Bookmarks feature for clientless access. Hotfix HF062020.1 was published for all firewalls running v17.x.

Affected products Warnungen 1 Metrics 4 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Sophos ≫ Xg Firewall Firmware Version >= 17.0 < 17.5

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Update-

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release1

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release10

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release11

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release12

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release3

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release4

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release5

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release6

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release7

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release8

Sophos ≫ Xg Firewall Version-

Sophos ≫ Xg Firewall Firmware Version17.5 Updatemaintenance_release9

Sophos ≫ Xg Firewall Version-

06.02.2025: CISA Known Exploited Vulnerabilities (KEV) Catalog

Sophos XG Firewall Buffer Overflow Vulnerability

Vulnerability

Sophos XG Firewall contains a buffer overflow vulnerability that allows for remote code execution via the "HTTP/S bookmark" feature.

Description

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Required actions

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	66.81%	0.985

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

https://community.sophos.com/b/security-blog/posts/advisory-buffer-overflow-vulnerability-in-user-portal

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2020-15069

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-15069

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-15069

EUVD