Buffer Overflow Vulnerability in Sophos XG Firewall
CVE-2020-15069

9.8CRITICAL

Key Information:

Vendor: Sophos
Status: Xg Firewall Firmware
Vendor: CVE Published:; 29 June 2020

Badges

👾 Exploit Exists🟣 EPSS 57%🦅 CISA Reported

What is CVE-2020-15069?

A vulnerability in the Sophos XG Firewall allows for a buffer overflow caused by improper validation in the HTTP/S Bookmarks feature for clientless access. This flaw can enable attackers to execute remote code on devices running affected versions of the firewall. A hotfix, HF062020.1, has been published to remediate this issue for all firewalls operating on the 17.x version series.

CISA has reported CVE-2020-15069

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2020-15069 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

References

https://community.sophos.com/b/security-blog/posts/adviso...

x_refsource_CONFIRM

EPSS Score

57% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Feb 6, 2025
🦅
CISA Reported
Feb 6, 2025
Vulnerability published
Jun 29, 2020
Vulnerability Reserved
Jun 25, 2020