OS Command Injection in Sophos Firewall

#VU45884 OS Command Injection in Sophos Firewall

Published: 2020-08-07 | Updated: 2020-08-21

Vulnerability identifier: #VU45884

Vulnerability risk: High

CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-17352

CWE-ID: CWE-78

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Sophos Firewall
Hardware solutions / Security hardware applicances

Vendor: Sophos

Description

The vulnerability allows a remote authenticated user to execute arbitrary code.

Two OS command injection vulnerabilities in the User Portal of Sophos XG Firewall through 2020-08-05 potentially allow an authenticated attacker to remotely execute arbitrary code.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Sophos Firewall: 17.5 - 18.0

External links
http://community.sophos.com/b/security-blog
http://community.sophos.com/b/security-blog/posts/advisory-resolved-authenticated-rce-issues-in-user-portal-cve-2020-17352

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

OS Command Injection in Sophos XG Firewall