CVE advisoryKnown Exploit
CVE-2023-1671
Sophos Web Appliance: Command Injection Risk
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
A command injection vulnerability in Sophos Web Appliance allows attackers to execute arbitrary code. This can lead to system compromise and potential data breaches, impacting business operations. Organisations using affected versions should apply vendor updates.