CRITICAL🇵🇱 Wersja polska

CVE-2024-12727

CVSS 9.8v3.1pub. 2024-12-19upd. 2025-11-12

A pre-auth SQL injection vulnerability in the email protection feature of Sophos Firewall versions older than 21.0 MR1 (21.0.1) allows access to the reporting database and can lead to remote code execution if a specific configuration of Secure PDF eXchange (SPX) is enabled in combination with the firewall running in High Availability (HA) mode.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Sophos Firewall

    HW
    Sophos
    wszystkie wersje
  • Sophos Firewall Firmware

    OS
    Sophos
    < 21.0.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCESQLiFirewall
CWE
References

Related vulnerabilities

CVE-2022-3236CRITICAL9.8⚠ KEVten sam produkt

A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sop...

CVE-2025-6704CRITICAL9.8PL ✓ten sam produkt

Sophos Firewall SPX – pre-auth RCE przez zapis dowolnych plików

CVE-2025-7624CRITICAL9.8PL ✓ten sam produkt

SQL Injection w Sophos Firewall SMTP Proxy prowadzące do RCE

CVE-2024-12728CRITICAL9.8PL ✓ten sam produkt

Słabe dane uwierzytelniające SSH w Sophos Firewall – nieautoryzowany dostęp uprzywilejowany

CVE-2024-13974HIGH8.1ten sam produkt

A business logic vulnerability in the Up2Date component of Sophos Firewall older than version 21.0 MR1 (20.0.1...