CVE-2021-25267 - OpenCVE

Multiple XSS vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 19.0 GA.

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:S/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Sophos	Firewall Firmware Firewall

Configuration 1 [-]

AND

cpe:2.3:o:sophos:firewall_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sophos:firewall:-:*:*:*:*:*:*:*

References

Link	Resource
https://www.sophos.com/en-us/security-advisories/sophos-sa-20220505-sfos-19-0-0	Release Notes Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: Sophos

Published: 2022-05-05T18:05:12

Updated: 2022-05-05T18:05:11

Reserved: 2021-01-15T00:00:00

Link: CVE-2021-25267

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-05-05T18:15:09.367

Modified: 2022-05-13T04:26:13.353

Link: CVE-2021-25267

JSON object: View

Redhat Information

No data.

CWE

CWE-79

{"containers": {"cna": {"affected": [{"product": "Sophos Firewall", "vendor": "Sophos", "versions": [{"lessThan": "19.0 GA", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Gaetano Sapia"}], "descriptions": [{"lang": "en", "value": "Multiple XSS vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 19.0 GA."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-05-05T18:05:11", "orgId": "526a354d-e866-4174-ae7d-bac848e5c4c5", "shortName": "Sophos"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://www.sophos.com/en-us/security-advisories/sophos-sa-20220505-sfos-19-0-0"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security-alert@sophos.com", "ID": "CVE-2021-25267", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Sophos Firewall", "version": {"version_data": [{"version_affected": "<", "version_value": "19.0 GA"}]}}]}, "vendor_name": "Sophos"}]}}, "credit": [{"lang": "eng", "value": "Gaetano Sapia"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple XSS vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 19.0 GA."}]}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.sophos.com/en-us/security-advisories/sophos-sa-20220505-sfos-19-0-0", "refsource": "CONFIRM", "url": "https://www.sophos.com/en-us/security-advisories/sophos-sa-20220505-sfos-19-0-0"}]}}}}, "cveMetadata": {"assignerOrgId": "526a354d-e866-4174-ae7d-bac848e5c4c5", "assignerShortName": "Sophos", "cveId": "CVE-2021-25267", "datePublished": "2022-05-05T18:05:12", "dateReserved": "2021-01-15T00:00:00", "dateUpdated": "2022-05-05T18:05:11", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sophos:firewall_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6EE8FAED-A79E-470F-B3DE-51F326E80353", "versionEndExcluding": "19.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sophos:firewall:-:*:*:*:*:*:*:*", "matchCriteriaId": "2F728103-324C-4F34-9EE6-6E922018A2EB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Multiple XSS vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 19.0 GA."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de tipo XSS en Webadmin permiten una escalada de privilegios de admin a super-admin en Sophos Firewall versiones anteriores a 19.0 GA"}], "id": "CVE-2021-25267", "lastModified": "2022-05-13T04:26:13.353", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 8.5, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.7, "impactScore": 6.0, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.9, "impactScore": 5.9, "source": "security-alert@sophos.com", "type": "Secondary"}]}, "published": "2022-05-05T18:15:09.367", "references": [{"source": "security-alert@sophos.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://www.sophos.com/en-us/security-advisories/sophos-sa-20220505-sfos-19-0-0"}], "sourceIdentifier": "security-alert@sophos.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}