Statements (17)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:cybersecurity_vulnerability
|
| gptkbp:affects |
gptkb:Sophos_Firewall
|
| gptkbp:attack_vector |
gptkb:network_protocol
|
| gptkbp:CWE_ID |
gptkb:CWE-288
|
| gptkbp:describes |
An authentication bypass vulnerability allowing remote code execution in the User Portal and Webadmin of Sophos Firewall.
|
| gptkbp:exploited_in_the_wild |
true
|
| gptkbp:hasCVSSScore |
9.8
|
| gptkbp:impact |
remote code execution
|
| gptkbp:mainVendors |
gptkb:Sophos
|
| gptkbp:patchedBy |
18.5 MR3 (18.5.3) and later
|
| gptkbp:publicationDate |
2022-03-25
|
| gptkbp:requires_authentication |
false
|
| gptkbp:vulnerableTo |
gptkb:CVE-2022-1040
authentication bypass |
| gptkbp:bfsParent |
gptkb:MHCHAOS
|
| gptkbp:bfsLayer |
6
|
| https://www.w3.org/2000/01/rdf-schema#label |
CVE-2022-1040
|