CVE-2022-3711

Name of the Vulnerable Software and Affected Versions Sophos Firewall versions prior to 19.5 GA

Description The issue is related to a post-auth read-only SQL injection vulnerability in the User Portal component of Sophos Firewall. This vulnerability can be exploited by a remote attacker to gain unauthorized access to protected information, specifically allowing users to read non-sensitive configuration database contents.

Recommendations For versions prior to 19.5 GA, update to version 19.5 GA or later to resolve the issue. As a temporary workaround, consider restricting access to the User Portal to minimize the risk of exploitation.