CVE advisoryKnown Exploit
CVE-2022-1040
Sophos Firewall Authentication Bypass and Code Execution Vulnerability
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
A vulnerability in Sophos Firewall's User Portal and Webadmin allows remote attackers to bypass authentication and execute code. This impacts organizations by potentially compromising affected systems and leading to data breaches. The vulnerability has a critical severity rating and is listed as actively exploited.