Sophos Firewall Vulnerabilities: Fixes in Place, But Are You Safe?

Sophos fixed critical vulnerabilities in its firewall product, preventing SQL injection, privileged SSH access, and remote code execution. These issues required no action for users with automatic hotfixes enabled. So, if your firewall’s been acting like a Swiss cheese, now it’s more like a tightly knit sweater.

3P
Published: December 20, 2024 10:18 pmAdded: December 20, 2024 at 2:26 pmAssembled by: The Editor
Pro Dashboard

Hot Take:

Sophos Firewall vulnerabilities: bringing SQL to the party, giving SSH a free-for-all, and letting remote code execution crash the bash! Sophos, the party planner, is here to fix the mess and avoid future gatecrashers.

Key Points:

  • Sophos patched three critical vulnerabilities in its firewall product, impacting versions prior to 21.0 GA.
  • The vulnerabilities included SQL injection, non-random SSH passphrase, and post-auth code injection.
  • Automatic hotfixes are available for those with the default settings enabled.
  • No known attacks exploiting these specific vulnerabilities have been reported yet.
  • Previous Sophos firewall incidents involved a Chinese national hacking 81,000 devices back in 2020.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?