← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-3236 — Actively Exploited: Firewall (Sophos)

A code injection vulnerability in the User Portal and Webadmin of Sophos Firewall allows for remote code execution.

CVE IDCVE-2022-3236
VendorSophos
ProductFirewall
Vulnerability nameSophos Firewall Code Injection Vulnerability
Date added2022-09-23
Remediation due2022-10-14
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionA code injection vulnerability in the User Portal and Webadmin of Sophos Firewall allows for remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →