漏洞标题
N/A
漏洞描述信息
Sophos Web Appliance (版本4.2.1.3) 存在两个远程命令注入漏洞,影响其Web管理界面。这些漏洞发生在负责阻止和解除设备访问的 MgrReport.php(/controllers/MgrReport.php)组件中。设备在调用shell_exec()函数之前未正确 escape 传递的“解除阻止IP地址”和“阻止IP地址”信息,这允许系统命令注入到设备中。代码错误地表示,通过使用“ escapeips”变量来保护处理的信息,然而情况并非如此。Sophos ID是 NSWA-1258。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
The Sophos Web Appliance (version 4.2.1.3) is vulnerable to two Remote Command Injection vulnerabilities affecting its web administrative interface. These vulnerabilities occur in the MgrReport.php (/controllers/MgrReport.php) component responsible for blocking and unblocking IP addresses from accessing the device. The device doesn't properly escape the information passed in the variables 'unblockip' and 'blockip' before calling the shell_exec() function which allows for system commands to be injected into the device. The code erroneously suggests that the information handled is protected by utilizing the variable name 'escapedips' - however this was not the case. The Sophos ID is NSWA-1258.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Sophos Web Appliance 命令注入漏洞
漏洞描述信息
Sophos Web Appliance(SWA)是英国Sophos公司的一套Web安全网关产品。该产品支持实时网络威胁防护、自定义Web过滤和动态控制应用程序等。 Sophos Web Appliance 4.2.1.3版本中的Web管理界面的MgrReport.php文件存在远程命令注入漏洞。攻击者可利用该漏洞向设备上注入系统命令。
CVSS信息
N/A
漏洞类别
命令注入