{"uuid": "15199a47-ac5a-417c-b5ef-e8698d033c3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-1040", "type": "seen", "source": "https://t.me/information_security_channel/46993", "content": "Critical Remote Code Execution Vulnerability in Sophos Firewall\nhttps://www.securityweek.com/critical-remote-code-execution-vulnerability-sophos-firewall\n\nSophos on Friday announced the rollout of urgent patches for a critical authentication bypass vulnerability in the web portal of its Sophos Firewall product.\nReported by an external researcher via the Sophos bug bounty program, the vulnerability is tracked as CVE-2022-1040 and impacts Sophos Firewall v18.5 MR3 (18.5.3) and older releases.\nread more (https://www.securityweek.com/critical-remote-code-execution-vulnerability-sophos-firewall)", "creation_timestamp": "2022-03-28T16:27:57.000000Z"}