CVE-2023-1671: Sophos Web Appliance Command Injection Vulnerability.

Sophos Web Appliance Command Injection Vulnerability. Sophos Web Appliance contains a command injection vulnerability in the warn-proceed handler that allows for remote code execution.

• CISA KEV-listed (remediation due 2023-12-07)
• EPSS 94.3% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions