CVE-2023-22620

Name of the Vulnerable Software and Affected Versions SecurePoint UTM versions prior to 12.2.5.1

Description An issue was discovered in the firewall's endpoint at "/spcgi.cgi" that allows sessionid information disclosure via an invalid authentication attempt. This can be used to bypass the device's authentication and gain access to the administrative interface.

Recommendations For versions prior to 12.2.5.1, update to version 12.2.5.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the "/spcgi.cgi" endpoint until a patch is available.