← ExploitWatch
HomeExploited Vulnerabilities

CVE-2020-15069 — Actively Exploited: XG Firewall (Sophos)

Sophos XG Firewall contains a buffer overflow vulnerability that allows for remote code execution via the "HTTP/S bookmark" feature.

CVE IDCVE-2020-15069
VendorSophos
ProductXG Firewall
Vulnerability nameSophos XG Firewall Buffer Overflow Vulnerability
Date added2025-02-06
Remediation due2025-02-27
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionSophos XG Firewall contains a buffer overflow vulnerability that allows for remote code execution via the "HTTP/S bookmark" feature.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →