CNNVD-202507-2645 Information

CNNVD ID

CNNVD-202507-2645

Related CVE

CVE-2025-6704

• CNNVD Published: 2025-07-21

Description (Chinese)

Sophos Firewall是英国Sophos公司的一款防火墙。 Sophos Firewall 21.0 MR2之前版本存在安全漏洞，该漏洞源于Secure PDF eXchange功能存在任意文件写入，可能导致预认证远程代码执行。

Description (English)

Sophos Firewall is a firewall of the British company Sophos. A security loophole existed in the previous version of Sophos Firewall 21.0 MR2, which stemmed from the existence of any file written by the Secure PDF eXchange functionality, which could lead to pre-certified remote code execution.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Sophos

Published

2025-07-21

Last Modified

2026-02-24

References

https://www.sophos.com/en-us/security-advisories/sophos-sa-20250721-sfos-rce https://nvd.nist.gov/vuln/detail/CVE-2025-6704

Patch

https://www.sophos.com/en-us/security-advisories/sophos-sa-20250721-sfos-rce