← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-1040 — Actively Exploited: Firewall (Sophos)

An authentication bypass vulnerability in User Portal and Webadmin of Sophos Firewall allows for remote code execution.

CVE IDCVE-2022-1040
VendorSophos
ProductFirewall
Vulnerability nameSophos Firewall Authentication Bypass Vulnerability
Date added2022-03-31
Remediation due2022-04-21
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionAn authentication bypass vulnerability in User Portal and Webadmin of Sophos Firewall allows for remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →