—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Multiple vulnerabilities in Sophos Firewall 

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: CRITICAL

Software Affected

Sophos Firewall version prior to v21.0 GA (21.0.0)

Sophos Firewall version prior to v21.5 GA (21.5.0)

Overview

Multiple vulnerabilities have been reported in Sophos Firewall that could allow a remote attacker to execute arbitrary code, escalate privileges, or bypass security mechanisms on affected systems.

Target Audience:

All organizations and individuals using Sophos Firewall to manage network security and cyber threat protection.

Impact Assessment:

Potential for unauthorized access, remote code execution and potential full system compromise.

Risk Assessment:

High risk of system compromise, data breach.

Description

Sophos Firewall is a network security solution that provides advanced threat protection, deep visibility, and simplified management for businesses.

These vulnerabilities exist in Sophos Firewall due to arbitrary file write in SPX, SQL injection in the SMTP proxy and WebAdmin, command injection in WebAdmin, and a logic flaw in the Up2Date module.

Successful exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code, escalate privileges, or bypass security mechanisms on affected systems.

Solution

Apply appropriate fixes issued by the vendor.

https://www.sophos.com/en-us/security-advisories/sophos-sa-20250721-sfos-rce

References

Sophos

https://www.sophos.com/en-us/security-advisories/sophos-sa-20250721-sfos-rce

CVE Name

CVE-2024-13973

CVE-2024-13974

CVE-2025-6704

CVE-2025-7382

CVE-2025-7624

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmiDmqgACgkQ3jCgcSdc

ys+c1A/+PifNw1MueaZRMBKzikEPJSLBaRCJN1DNqbHRpXXd301HL5T9KawYMZwd

PpRBUXyvU8OSHuZ93ICkuO8sHmUjMYRiBsXTE28pkkHICQ056b/piXEQL3mqeTxw

Lj7Utmz283lGKNE1bRS+iWc8dDqK2ZZPKER+YSAIJMTGtWy8NqQLf4U258Eef4uh

ZwvXQZt1KJL1VikK1wDaXkJ7aET3dNmbY18KJyKKVypjtj9sIMr9C4VlXEyQGOmG

Eczp02I7GU1tc/8MEuT9WKjcudxSrqDeHb0zDBpEOSQlXVutn9heKmoMFx4jTo5Y

MKskkB6ZtccyXFL727nqfGmjoPVObxk3ixGj3/4wL8FervoVaOVS/carPMtulnsw

lCzyp1XVe7U6IWYz5OPtqC5HMBXpkOX992DuVGzoxNIC9WRTICU1imjoi5iR0Eal

ux0RQ++ePU1JVjS8AA7hip5PpvVhMSR98XJQMKtBjQEccr+40HS68WokcqMnACaa

CR9oP3/GQpp9IgziJj8vp3c2Z8cC6/NA++4b9CvDLicbP7AB+Zk7zN9C9GD2kUOu

ZBqJ9IHvS2wnGJqWKqzB7I3E5j2D5NM+9cXDf81zkdTYjgKuRA9kgmHVzQ9ja2Hv

J/1xTe9+NvrwTKdWdVcbnuB4q0gxKMMfceEHefs+4btuhwigF0w=

=olHx

—–END PGP SIGNATURE—–