exploitDog

GHSA-x7vj-wqq4-cq4v

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Sophos XG Firewall 17.x through v17.5 MR12 allows a Buffer Overflow and remote code execution via the HTTP/S Bookmarks feature for clientless access. Hotfix HF062020.1 was published for all firewalls running v17.x.

Sophos XG Firewall 17.x through v17.5 MR12 allows a Buffer Overflow and remote code execution via the HTTP/S Bookmarks feature for clientless access. Hotfix HF062020.1 was published for all firewalls running v17.x.

Ссылки

EPSS

Процентиль: 99%

0.82581

Высокий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-120

Связанные уязвимости

CVE-2020-15069

CVSS3: 9.8

nvd

больше 5 лет назад

Sophos XG Firewall 17.x through v17.5 MR12 allows a Buffer Overflow and remote code execution via the HTTP/S Bookmarks feature for clientless access. Hotfix HF062020.1 was published for all firewalls running v17.x.

EPSS

Процентиль: 99%

0.82581

Высокий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-120