Critical Sophos Firewall vulnerability allows remote code execution

Patch time for firewalls…:

Sophos has fixed a critical vulnerability in its Sophos Firewall product that allows remote code execution. Tracked as CVE-2022-1040, the authentication bypass vulnerability exists in the User Portal and Webadmin areas of Sophos Firewall. […]

Original Article