Sophos Firewall Sensitive Information Disclosure Vulnerability

Languages: தமிழ். Risk Level: High.

Components Affected

  • Sophos Firewall version prior to v19.5 MR3 (19.5.3) and older

Overview

A vulnerability has been identified in Sophos Firewall where a remote user can exploit this vulnerability to trigger sensitive information disclosure on the targeted system.

Description

The primary vulnerability is the password disclosure vulnerability, which has been identified and tracked under CVE-2023-5552. The vulnerability in the Secure PDF eXchange (SPX) feature allows attackers with full email access to decrypt PDFs in Sophos Firewall version 19.5 MR3 (19.5.3) and older, if the password type is set to “specified by sender”.

Impact

  • Information Disclosure

Solution/ Workarounds

Apply fixes issued by the vendor:

https://www.sophos.com/en-us/security-advisories/sophos-sa-20231017-spx-password

Reference

https://www.hkcert.org/security-bulletin/sophos-firewall-sensitive-informationdisclosure-vulnerability_20231019
https://www.sophos.com/en-us/security-advisories/sophos-sa-20231017-spx-password

Disclaimer

The information provided herein is on an “as is” basis, without warranty of any kind.

Recent Alerts