CVE-2023-1671

NVD Published Date: April 04, 2023 at 10:15 AM
NVD Last Modified: June 17, 2024 at 01:34 PM
Download Patch
Vulnerability ID
CVE-2023-1671
Severity
CRITICAL
Severity Score
9.8
Summary
A pre-auth command injection vulnerability in the warn-proceed handler of Sophos Web Appliance older than version 4.3.10.4 allows execution of arbitrary code.
Mitigation and Patches
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-77

Recent Publish

CVE-2023-29492

CVE-2023-27350

CVE-2023-27524

CVE-2023-28771

CVE-2023-33009

CVE-2023-33010

See SecOps Solution
in action

Schedule Demo