CVE-2024-13973 Information

Jul 22, 2025 cve

Description

A post-auth SQL injection vulnerability in WebAdmin of Sophos Firewall versions older than 21.0 MR1 (21.0.1) can potentially lead to administrators achieving arbitrary code execution.

Reference

https://www.sophos.com/en-us/security-advisories/sophos-sa-20250721-sfos-rce

CNNVD-202507-2639 (Published: 2025-07-21)

Share on: