CVE-2022-3236CISA KEV: Actively Exploited

Sophos Firewall Code Injection Vulnerability

Published Sep 23, 2022·Updated Sep 23, 2022

Description

A code injection vulnerability in the User Portal and Webadmin of Sophos Firewall allows for remote code execution.

Public Exploits & PoCs9 found

PoC: CVE-2022-3236-RCE-PoC

writeup and PoC for CVE-2022-3236 (unauthenticated RCE in userportal and webadmin of sophos firewall)

2

PoC: CVE-2022-3236

A code injection vulnerability in the User Portal and Web Admin Portal allows a remote attacker to execute code in a Sophos Firewall.

PoC: CVE-2022-3236-MASS-RCE

Unauthenticated rce in sophos User Portal and Webadmin components mass exploitation tool

PoC: CVE-2022-3236-POC

Unauthenticated rce in sophos User Portal and Webadmin components mass exploitation tool

PoC: CVE-2022-3236-RCE

Unauthenticated rce in sophos User Portal and Webadmin components mass exploitation tool

PoC: CVE-2022-3236-MASS-RCE

CVE-2022-3236 Unauthenticated rce in sophos User Portal and Webadmin components mass exploitation tool

PoC: CVE-2022-3236-RCE-POC

CVE-2022-3236 Unauthenticated rce in sophos User Portal and Webadmin components mass exploitation tool

PoC: CVE-2022-3236-RCE

unauthenticated remote code execution in userportal and webadmin component of sophos firewall

PoC: CVE-2022-3236

Unauthenticated rce in sophos User Portal and Webadmin components mass exploitation tool

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free