CVE-2025-7382

8.8

High

Published:21 Jul 2025

Last updated:17 Jun 2026

Source:security-alert@sophos.com

Analyzed

Weakness (CWE)

CWE-78OS Command Injection

CVSS Vector

v3.1

Attack Vector: Adjacent
Attack Complexity: Low
Privileges Required: None
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: High
Availability: High

View on MITRE Find PoC on GitHub

Description

A command injection vulnerability in WebAdmin of Sophos Firewall versions older than 21.0 MR2 (21.0.2) can lead to adjacent attackers achieving pre-auth code execution on High Availability (HA) auxiliary devices, if OTP authentication for the admin user is enabled.

References

security-alert@sophos.com

https://www.sophos.com/en-us/security-advisories/sophos-sa-20250721-sfos-rce