CVE-2024-12728
CVE-2024-12728
In short
Sophos Firewall versions before 20.0 MR3 have weak SSH credentials that could allow an attacker to gain privileged access to the firewall system. This is critical because the firewall is a key security device protecting your network.
Technical detail
CWE-1391 weak credentials vulnerability in Sophos Firewall < 20.0.3 enables unauthorized privileged SSH access without requiring authentication bypass techniques. The vulnerability affects default or insufficiently hardened credentials, allowing remote attackers to establish authenticated sessions with high privileges directly to the firewall management interface.
Summary generated and translated by AI from the official description.
A weak credentials vulnerability potentially allows privileged system access via SSH to Sophos Firewall older than version 20.0 MR3 (20.0.3).
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Sophos · Sophos FirewallWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →