A code injection vulnerability allowing remote code execution was discovered in the User Portal and Webadmin of Sophos Firewall. The vulnerability has been fixed.
Attacker targets bugs in a popular web application graphical interface development tool.
Sophos Firewall is a network protection solution for the enterprise market.