The pre-auth command injection Sophos vulnerability was found in the versions prior to 4.3.10.4. CVE-2023-1671 had a severity score of 9.8.
A patched Sophos vulnerability Web Appliance was found to be exploited in the wild. The first advisory about the critical vulnerability CVE-2023-1671 was published on April 4, 2023. This pre-auth command injection Sophos vulnerability allowed the execution of arbitrary code.
Details about the pre-auth command injection Sophos vulnerability
The pre-auth command injection Sophos vulnerability was found in the versions prior to 4.3.10.4. CVE-2023-1671 had a severity score of 9.8. The vulnerability was discovered through the Sophos bug bounty program by a security researcher.
0 Comments