Known Vulnerabilities for Sfos by Sophos
Listed below are 7 of the newest known vulnerabilities associated with "Sfos" by "Sophos".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-0331 | An information disclosure vulnerability in Webadmin allows an unauthenticated remote attacker to read the device serial numbe... | 5.3 - MEDIUM | 2022-03-29 | 2023-08-08 |
| CVE-2020-12271 | A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall devices, as exploi... | 9.8 - CRITICAL | 2020-04-27 | 2022-10-05 |
| CVE-2020-11503 | A heap-based buffer overflow in the awarrensmtp component of Sophos XG Firewall v17.5 MR11 and older potentially allows an at... | 9.8 - CRITICAL | 2020-06-18 | 2020-06-23 |
| CVE-2018-16118 | A shell escape vulnerability in /webconsole/APIController in the API Configuration component of Sophos XG firewall 17.0.8 MR-... | 8.1 - HIGH | 2019-06-20 | 2019-06-25 |
| CVE-2018-16117 | A shell escape vulnerability in /webconsole/Controller in Admin Portal of Sophos XG firewall 17.0.8 MR-8 allow remote authent... | 8.8 - HIGH | 2019-06-20 | 2020-07-13 |
| CVE-2018-16116 | SQL injection vulnerability in AccountStatus.jsp in Admin Portal of Sophos XG firewall 17.0.8 MR-8 allow remote authenticated... | 8.8 - HIGH | 2019-06-20 | 2019-06-24 |
| CVE-2017-18014 | An NC-25986 issue was discovered in the Logging subsystem of Sophos XG Firewall with SFOS before 17.0.3 MR3. An unauthenticat... | 6.1 - MEDIUM | 2018-01-12 | 2018-02-06 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Sophos | Sfos | 17.5 | maintenance_release9 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release8 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release7 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release6 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release5 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release4 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release3 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release2 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release12 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release11 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release10 | All | All |
| Operating System | Sophos | Sfos | 17.5 | maintenance_release1 | All | All |
| Operating System | Sophos | Sfos | 17.5 | - | All | All |
| Operating System | Sophos | Sfos | 17.1 | maintenance_release4 | All | All |
| Operating System | Sophos | Sfos | 17.1 | maintenance_release3 | All | All |
| Operating System | Sophos | Sfos | 17.1 | maintenance_release2 | All | All |
| Operating System | Sophos | Sfos | 17.1 | maintenance_release1 | All | All |
| Operating System | Sophos | Sfos | 17.1 | - | All | All |
| Operating System | Sophos | Sfos | 17.0 | - | All | All |
| Operating System | Sophos | Sfos | 17.0 | maintenance_release9 | All | All |