ITWire

Sophos fixes SQL injection flaw in some firewall devices

Global cyber security vendor Sophos has fixed a pre-authentication SQL injection vulnerability in the WebAdmin component of its Cyberoam operating system which it uses in some of its enterprise ...
Bleeping Computer

Sophos discloses critical Firewall remote code execution flaw

Sophos has addressed three vulnerabilities in its Sophos Firewall product that could allow remote unauthenticated threat actors to perform SQL injection, remote code execution, and gain privileged SSH ...