CVE-2022-4934

CVSS V2 None CVSS V3 None
Description
A post-auth command injection vulnerability in the exception wizard of Sophos Web Appliance older than version 4.3.10.4 allows administrators to execute arbitrary code.
Overview
  • CVE ID
  • CVE-2022-4934
  • Assigner
  • security-alert@sophos.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-04-04T10:15:07
  • Last Modified Date
  • 2023-04-09T03:45:12
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:sophos:web_appliance:*:*:*:*:*:*:*:* 1 OR 4.3.10.4
References
History
Created Old Value New Value Data Type Notes
2023-04-17 04:04:15 Added to TrackCVE
2023-04-17 04:04:18 Weakness Enumeration new