CVE-2020-25223
Sophos SG UTM Remote Code Execution Vulnerability
Severity Score
9.8
*CVSS v3.1
Exploit Likelihood
94.4%
*EPSS
Affected Versions
6
*CPE
Public Exploits
7
*Multiple Sources
Exploited in Wild
Yes
*KEV
Decision
Act
*SSVC
Descriptions
A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM before v9.705 MR5, v9.607 MR7, and v9.511 MR11
Se presenta una vulnerabilidad de ejecución de código remota en WebAdmin de Sophos SG UTM versiones anteriores a v9.705 MR5, v9.607 MR7 y v9.511 MR11
A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Act
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-09-10 CVE Reserved
- 2020-09-25 CVE Published
- 2021-09-11 First Exploit
- 2022-03-25 Exploited in Wild
- 2022-04-15 KEV Due Date
- 2025-02-03 CVE Updated
- 2025-03-30 EPSS Updated
CWE
- CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CAPEC
References (14)
| URL | Date | SRC |
|---|---|---|
| https://packetstorm.news/files/id/164697 | 2021-10-28 | |
| https://github.com/twentybel0w/CVE-2020-25223 | 2021-09-11 | |
| https://github.com/darrenmartyn/sophucked | 2022-05-19 | |
| https://github.com/reneww/poc-CVE-2020-25223 | 2024-11-28 | |
| https://github.com/gh-2025-02/poc-cve-2020-25223 | 2025-01-05 | |
| https://github.com/maguireja/CVE-2020-25223 | 2022-04-12 | |
| http://packetstormsecurity.com/files/164697/Sophos-UTM-WebAdmin-SID-Comman... | 2025-02-03 |
1 - 7 of 7
| URL | Date | SRC |
|---|