CVE-2023-1671

CVSS 9.8 CRITICALEPSS 100.0%● KEVCWE-77

In short

A security flaw in Sophos Web Appliance versions before 4.3.10.4 allows attackers to run malicious commands on the device without needing to log in first. This is critical because it gives attackers complete control over the appliance.

Technical detail

A pre-authentication command injection vulnerability in the warn-proceed handler permits arbitrary code execution through unsanitized user input. The attack requires no authentication, has a network vector, and results in complete system compromise on affected Sophos Web Appliance versions prior to 4.3.10.4.

Summary generated and translated by AI from the official description.

A pre-auth command injection vulnerability in the warn-proceed handler of Sophos Web Appliance older than version 4.3.10.4 allows execution of arbitrary code.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Sophos · Sophos Web Appliance

public PoCs found — 5

githubgithub.com/W01fh4cker/CVE-2023-1671-POC★ 16 githubgithub.com/ohnonoyesyes/CVE-2023-1671★ 3 githubgithub.com/csffs/cve-2023-1671★ 0 cve_referencepacketstormsecurity.com/files/172016/Sophos-Web-Appliance-4.3.10.4-Command-Injection.htmlunverified exploitdbwww.exploit-db.com/exploits/51396unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/172016/Sophos-Web-Appliance-4.3.10.4-Command-Injection.html https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-1671 https://www.sophos.com/en-us/security-advisories/sophos-sa-20230404-swa-rce