• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
critical sophos security bug allows rce on firewalls

Critical Sophos Security Bug Allows RCE on Firewalls

You are here: Home / Latest Cyber Security Vulnerabilities / Critical Sophos Security Bug Allows RCE on Firewalls
March 28, 2022

The security vendor’s appliance suffers from an authentication-bypass issue.

Cybersecurity stalwart Sophos has plugged a critical vulnerability in its firewall product, which could allow for remote code-execution.

The flaw, tracked as CVE-2022-1040, is especially an authentication-bypass vulnerability in the Consumer Portal and Webadmin of the Sophos Firewall. It affects model 18.5 MR3 (18.5.3) and more mature of the appliance.

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


An exploit would give attackers manage above the gadget, and enable them to disable the firewall, insert new consumers, or use it as a jumping-off stage for burrowing further into a company’s network.

Sophos did not offer technological aspects or a CVSS rating for the bug, but mentioned it as “critical.”

The organization pushed out a hotfix, but those without the need of computerized updates enabled will have to have to manually update their appliances. There’s also a workaround, according to the company’s security advisory:

“Customers can shield them selves from external attackers by making certain their User Portal and Webadmin are not uncovered to WAN,” according to Sophos. “Disable WAN entry to the Consumer Portal and Webadmin by pursuing device obtain best techniques and as a substitute use VPN and/or Sophos Central for remote entry and administration.”

An unnamed independent researcher was credited with reporting the flaw through Sophos’ bug bounty.

The vulnerability is the third bug for the seller this thirty day period. Earlier in March, two some others arrived to light, tracked as CVE-2022-0386 (a article-authentication SQL-injection issue) and CVE-2022-0652 (an insecure accessibility permissions bug). They afflicted the Sophos UTM unified menace-management appliance.

Moving to the cloud? Learn rising cloud-security threats together with solid tips for how to defend your assets with our FREE downloadable Ebook, “Cloud Security: The Forecast for 2022.” We explore organizations’ leading risks and challenges, greatest techniques for defense, and assistance for security good results in this kind of a dynamic computing setting, such as useful checklists.


Some components of this write-up are sourced from:
threatpost.com

Previous Post: «Cyber Security News Washington Health District Suffers Another Data Breach
Next Post: The ten biggest threats to your Windows PC in 2022 the ten biggest threats to your windows pc in 2022»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • New Zoom Flaws Could Let Attackers Hack Victims Just by Sending them a Message
  • Ransomware Attacks Increasing at “Alarming” Rate
  • Senate Report: US Government Lacks Comprehensive Data on Ransomware
  • Popular PyPI Package ‘ctx’ and PHP Library ‘phpass’ Hijacked to Steal AWS Keys
  • Fronton IOT Botnet Packs Disinformation Punch
  • SIM-based Authentication Aims to Transform Device Binding Security to End Phishing
  • New Chaos Ransomware Builder Variant “Yashma” Discovered in the Wild
  • Open source packages with millions of installs hacked to harvest AWS credentials
  • DOE ‌‌‌‌‌‌‌‌‌‌‌‌‌‌‌funds‌ ‌development of Qunnect’s Quantum Repeater
  • Cabinet Office Reports 800 Missing Electronic Devices in Three Years

Copyright © TheCyberSecurity.News, All Rights Reserved.