CVE-2022-3236: Sophos Firewall Code Injection Vulnerability
First published: Fri Sep 23 2022(Updated: )
A code injection vulnerability in the User Portal and Webadmin of Sophos Firewall allows for remote code execution.
Credit: security-alert@sophos.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sophos Firewall | =19.0.1 | |
| Sophos Firewall | ||
| Sophos Firewall | <=19.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-3236?
CVE-2022-3236 is a code injection vulnerability in the User Portal and Webadmin of Sophos Firewall. It allows a remote attacker to execute code in Sophos Firewall version v19.0 MR1 and older.
How severe is CVE-2022-3236?
CVE-2022-3236 has a severity rating of 9.8 (critical).
Which versions of Sophos Firewall are affected by CVE-2022-3236?
Sophos Firewall version v19.0 MR1 and older are affected by CVE-2022-3236.
How can a remote attacker exploit CVE-2022-3236?
A remote attacker can exploit CVE-2022-3236 by injecting malicious code through the User Portal or Webadmin.
Is there a fix for CVE-2022-3236?
Yes, Sophos has released a fix for CVE-2022-3236. It is recommended to update to the latest version of Sophos Firewall to mitigate the vulnerability.
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- agent/weakness
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- collector/nvd-index
- vendor/sophos
- canonical/sophos firewall
- version/sophos firewall/19.0.1