CVE-2022-3710

Name of the Vulnerable Software and Affected Versions Sophos Firewall versions prior to 19.5 GA

Description A post-auth read-only SQL injection issue allows API clients to read non-sensitive configuration database contents in the API controller. This can enable a remote attacker to gain unauthorized access to protected information. The issue is related to a lack of protection against SQL query structure exploitation.

Recommendations For Sophos Firewall versions prior to 19.5 GA, update to version 19.5 GA or later to resolve the issue. As a temporary workaround, consider restricting access to the API controller to minimize the risk of exploitation.