Bobcares
Client Area
Emergency Support
Latest | Server Management

Sophos Firewall vulnerability (CVE-2022-1040)

by | Apr 16, 2022

Sophos Firewall vulnerability(CVE-2022-1040) will no longer be a problem with this quick guide by our experts.

At Bobcares, we offer solutions for every query, big and small, as a part of our Server Management Services.

Let’s take a look at how our Support Team is ready to help customers with Sophos Firewall vulnerability(CVE-2022-1040).

Resolved: Sophos Firewall vulnerability(CVE-2022-1040)

Recently, the cybersecurity firm, Sophos came across a critical security vulnerability in its firewall product. This can lead to real-world attacks.

The issue CVE-2022-1040 rates 9.8 out of 10 according to the CVSS scoring system. Furthermore, it affects Sophos Firewall versions 18.5 MR3 (18.5.3) as well as older versions. According to our Support Team, the error is a result of an authentication bypass vulnerability in the Webadmin interface and User portal. In fact, the vulnerability enables a remote attacker to execute arbitrary code.

 

Sophos Firewall vulnerability (CVE-2022-1040)

The vulnerability came to the attention of an external security researcher via the Sophos bug bounty program. The vulnerability has been taken care of. If we enable the Allow automatic installation of hotfixes” feature, we do not need to take any further action.

Alternatively, users can protect themselves by ensuring their User Portal, as well as Webadmin interface, has no WAN exposure. In fact, we can disable WAN access to the Webadmin and User Portal and use Sophos Control or VPN for remote access and management.

If we are not sure whether the hotfix for CVE-2022-1040 is in place, our Support Techs suggest running this command:

test -f /static/up_mode_json_stamp && echo "Hotfix is applied" || echo "Hotfix is not applied"

Furthermore, we can enable automatic hotfix installation with the following steps:

  1. First, head to Backup & firmware > Firmware > Hotfix.
  2. Then, turn on Allow automatic installation of hotfixes.
  3. Finally, click Apply.

After this process, Sophos Firewall checks for hotfixes every thirty minutes as well as after any restart.

[Looking for a solution to another query? We are just a click away.]

Conclusion

To sum up, our skilled Support Engineers at Bobcares demonstrated how to fix the Sophos Firewall vulnerability(CVE-2022-1040).

PREVENT YOUR SERVER FROM CRASHING!

Never again lose customers to poor server speed! Let us help you.

Our server experts will monitor & maintain your server 24/7 so that it remains lightning fast and secure.

GET STARTED

Related posts:

  1. How we install PHP FPM on CentOS – Related errors and fix
  2. Create New Destinations for JetBackup
  3. Install DirectAdmin on AlmaLinux
  4. Virtualmin: read data timeout error | Resolved

0 Comments

Submit a Comment

Your email address will not be published. Required fields are marked *

server management

Spend time on your business, not on your servers.

TALK TO US

Or click here to learn more.

Related Articles

  1. How we install PHP FPM on CentOS – Related errors and fix
  2. Create New Destinations for JetBackup
  3. Install DirectAdmin on AlmaLinux
  4. Virtualmin: read data timeout error | Resolved

Never again lose customers to poor
server speed! Let us help you.

GET STARTED