CVE-2024-12729

Name of the Vulnerable Software and Affected Versions Sophos Firewall versions prior to 21.0 MR1 (21.0.1)

Description A post-auth code injection vulnerability in the User Portal allows authenticated users to execute code remotely. The issue is related to incorrect code generation management. This vulnerability can be exploited by a remote attacker to execute arbitrary code.

Recommendations For Sophos Firewall versions prior to 21.0 MR1 (21.0.1), update to version 21.0 MR1 (21.0.1) or later to resolve the issue. As a temporary workaround, consider restricting access to the User Portal to minimize the risk of exploitation.