CVE-2023-1671

Name of the Vulnerable Software and Affected Versions Sophos Web Appliance versions prior to 4.3.10.4

Description The issue is related to a lack of input sanitization in the warn-proceed handler component of Sophos Web Appliance, which can be exploited by a remote attacker to execute arbitrary commands. This is a pre-auth command injection vulnerability, allowing for the execution of arbitrary code.

Recommendations For versions prior to 4.3.10.4, update to version 4.3.10.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the warn-proceed handler to minimize the risk of exploitation.