CVE-2022-3236

Description from NVD

A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v19.0 MR1 and older.

Information Acquisition Date:2023-01-18T15:03Z
CVSS 2.0: 0.0 None CVSS 3.x: 9.8 CRITICAL

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

NVD References

 https://www.sophos.com/en-us/security-advisories/sophos-sa-20220923-sfos-rce
     source:CONFIRM
     tags:Vendor Advisory    

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag:

List of frequently cited URLs

URLNum of Times Referred to
https://cvetrends.com50
https://thehackernews.com/2022/09/hackers-actively-exploiti...11
https://www.sophos.com/en-us/security-advisories/sophos-sa-...6
https://www.bleepingcomputer.com/news/security/over-4-000-s...6
https://opsmtrs.com/2ZFbaTl5
https://vulncheck.com/blog/sophos-cve-2022-32365
https://securityonline.info/cve-2022-3236-critical-0-day-so...4
https://www.helpnetsecurity.com/2022/09/26/cve-2022-32364
https://www.zerodayinitiative.com/blog/2022/10/19/cve-2022-...4
https://bit.ly/3CcS9Hq3
https://twitter.com/nekono_naha/status/15742139300999536653
http://mi6rogue.com/blog3
https://www.thezdi.com3
https://tweetedtimes.com/Pentest101MX?s=tnp3

Information from Twitter

User URL Info Source Date
SpixnetG https://spixnet.at/cybersecurity-blog/2023/01/24/over-4000-... Source SpixnetG         1626243187705581571 2023/02/17
SpixnetG https://twitter.com/SpixnetG/status/1626243187705581571/pho... Source SpixnetG         1626243187705581571 2023/02/17
blueteamsec1 http://dlvr.it/SjXwxG Source blueteamsec1     1626411503221104640 2023/02/17
blueteamsec1 https://twitter.com/blueteamsec1/status/1626411503221104640... Source blueteamsec1     1626411503221104640 2023/02/17
ipssignatures https://lists.astaro.com/ASGV9-IPS-rules.html#0 Source ipssignatures    1641199059028287494 2023/03/30
ipssignatures https://ipssignatures.appspot.com/?cve=CVE-2022-3236 Source ipssignatures    1641199059703611392 2023/03/30

List of frequently cited URLs

URLNum of Times Referred to
cvetrends.com50
thehackernews.com11
www.sophos.com6
www.bleepingcomputer.com6
opsmtrs.com5
vulncheck.com5
securityonline.info4
www.helpnetsecurity.com4
www.zerodayinitiative.com4
bit.ly3
twitter.com3
mi6rogue.com3
www.thezdi.com3
tweetedtimes.com3

Information from Twitter

User URL Info Source
SpixnetG spixnet.at Show Tweet
SpixnetG twitter.com Show Tweet
blueteamsec1 dlvr.it Show Tweet
blueteamsec1 twitter.com Show Tweet
ipssignatures lists.astaro.com Show Tweet
ipssignatures ipssignatures.appspot.com Show Tweet
GitHub Search Results: Up to 10
NameURL
Live-Hack-CVE/CVE-2022-3236 https://github.com/Live-Hack-CVE/CVE-2022-3236
GitHub Search Results: Up to 10
NameURL
Live-Hack-CVE/CVE-2022-3236 github.com
2023/03/30 Score : 0
Added Har-sia Database : 2022/09/23
Last Modified : 2023/03/30
Highest Scored Date : 2022/09/26
Highest Score : 47