KEV Entry
CVE-2023-1671
Known Exploited Vulnerability Entry KEVIntel
Entry Details
Confirmed Exploited2023-11-16 00:00 UTC
Timestamps
2023-11-16
2023-11-16
Scope
KEVIntel entry: A pre-auth command injection vulnerability in the warn-proceed handler of Sophos Web Appliance older than version 4.3.10.4 allows execution of... | Affected: Sophos / Sophos Web Appliance | CVSS: 9.8 (CRITICAL) | Used in malware: unknown | Not yet in CISA KEV: False
References
- {'id': 'CVE-2023-1671', 'url': 'https://www.cve.org/CVERecord?id=CVE-2023-1671'}
- {'id': 'kevintel', 'url': 'https://kevintel.com/CVE-2023-1671'}
d81e8f6b-801b-4d72-9b42-ec0cf1f0f473
KEVIntel
caeb2787-0d58-4236-9039-7c86c3e566f3
2026-06-23 14:05 UTC
2026-07-10 06:14 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| public_report | kevintel | successful_exploitation | 0.70 |
View details
|
- |