CVE-2018-16117

Name of the Vulnerable Software and Affected Versions Sophos XG firewall version 17.0.8 MR-8

Description A shell escape issue in the Admin Portal of Sophos XG firewall allows remote authenticated attackers to execute arbitrary OS commands. This is achieved by injecting shell metacharacters in the dbName POST parameter in the /webconsole/Controller endpoint.

Recommendations For Sophos XG firewall version 17.0.8 MR-8, as a temporary workaround, consider restricting access to the /webconsole/Controller endpoint until a patch is available. Additionally, avoid using shell metacharacters in the dbName parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.