CVE-2024-13973 | THREATINT

Description

A post-auth SQL injection vulnerability in WebAdmin of Sophos Firewall versions older than 21.0 MR1 (21.0.1) can potentially lead to administrators achieving arbitrary code execution.

PUBLISHED Reserved 2025-07-14 | Published 2025-07-21 | Updated 2025-07-21 | Assigner Sophos

MEDIUM: 6.8CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Product status

Default status

unaffected

Any version before 21.0 MR1 (21.0.1)

affected

Credits

The UK's National Cyber Security Centre (NCSC) finder

References

www.sophos.com/...ity-advisories/sophos-sa-20250721-sfos-rce

cve.org (CVE-2024-13973)

nvd.nist.gov (CVE-2024-13973)

Download JSON