CVE-2022-3236

Warnung

EPSS 91.04%
Veröffentlicht 23.09.2022 13:15:10
Zuletzt bearbeitet 27.10.2025 17:00:44
Quelle security-alert@sophos.com
CVE-Watchlists
Login
Unerledigt
Login

A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v19.0 MR1 and older.

Betroffene Produkte Warnungen 1 Metriken 4 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sophos ≫ Firewall Version <= 19.0.1

23.09.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

Sophos Firewall Code Injection Vulnerability

Schwachstelle

A code injection vulnerability in the User Portal and Webadmin of Sophos Firewall allows for remote code execution.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	91.04%	0.996

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
security-alert@sophos.com	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

https://www.sophos.com/en-us/security-advisories/sophos-sa-20220923-sfos-rce

Vendor Advisory

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-3236

US Government Resource

https://nvd.nist.gov/vuln/detail/CVE-2022-3236

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-3236

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-3236

EUVD