CVE-2022-1040

GPTKB entity

Statements (17)
Predicate Object
gptkbp:instanceOf cybersecurity vulnerability
gptkbp:affects gptkb:Sophos_Firewall
gptkbp:attack_vector gptkb:network_protocol
gptkbp:CWE_ID gptkb:CWE-288
gptkbp:describes An authentication bypass vulnerability allowing remote code execution in the User Portal and Webadmin of Sophos Firewall.
gptkbp:exploited_in_the_wild true
gptkbp:hasCVSSScore 9.8
https://www.w3.org/2000/01/rdf-schema#label CVE-2022-1040
gptkbp:impact remote code execution
gptkbp:mainVendors gptkb:Sophos
gptkbp:patchedBy 18.5 MR3 (18.5.3) and later
gptkbp:publicationDate 2022-03-25
gptkbp:requires_authentication false
gptkbp:vulnerableTo gptkb:CVE-2022-1040
authentication bypass
gptkbp:bfsParent gptkb:MHCHAOS
gptkbp:bfsLayer 6