Greater than 4,400 Web-exposed servers are operating variations of the Sophos Firewall that’s susceptible to a crucial exploit that permits hackers to execute malicious code, a researcher has warned.
CVE-2022-3236 is a code injection vulnerability permitting distant code execution within the Consumer Portal and Webadmin of Sophos Firewalls. It carries a severity ranking of 9.eight out of 10. When Sophos disclosed the vulnerability final September, the corporate warned it had been exploited within the wild as a zero-day. The safety firm urged clients to put in a hotfix and, afterward, a full-blown patch to stop an infection.
Based on lately revealed analysis, greater than 4,400 servers operating the Sophos firewall stay susceptible. That accounts for about 6 % of all Sophos firewalls, safety agency VulnCheck mentioned, citing figures from a search on Shodan.
Learn 5 remaining paragraphs | Feedback