Browse all 47 CVE security advisories affecting Sophos. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Sophos operates primarily as a provider of enterprise-grade cybersecurity solutions, focusing on endpoint protection, network security, and cloud infrastructure defense for organizations worldwide. With forty-seven recorded Common Vulnerabilities and Exposures, the company’s historical security landscape reveals a pattern typical of complex software ecosystems, predominantly featuring remote code execution and cross-site scripting flaws. These vulnerabilities often stem from intricate integration points within its management consoles and endpoint agents, occasionally allowing unauthorized access or privilege escalation. While no catastrophic, company-ending breaches have defined its recent history, individual component compromises have necessitated rigorous patch management cycles. The firm maintains a robust security engineering framework, emphasizing rapid response to disclosed issues. This approach underscores the inherent challenges of securing comprehensive security platforms, where the tools themselves must withstand the same rigorous scrutiny they apply to client environments, ensuring continuous trust in their defensive capabilities.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-13973 | Sophos Firewall 安全漏洞 — Sophos FirewallCWE-89 | 6.8 | Medium | 2025-07-21 |
| CVE-2024-13974 | Sophos Firewall 安全漏洞 — Sophos FirewallCWE-807 | 8.1 | High | 2025-07-21 |
| CVE-2025-7382 | Sophos Firewall 安全漏洞 — Sophos FirewallCWE-78 | 8.8 | High | 2025-07-21 |
| CVE-2025-7624 | Sophos Firewall 安全漏洞 — Sophos FirewallCWE-89 | 9.8 | Critical | 2025-07-21 |
| CVE-2025-6704 | Sophos Firewall 安全漏洞 — Sophos FirewallCWE-78 | 9.8 | Critical | 2025-07-21 |
| CVE-2024-12729 | Sophos Firewall 安全漏洞 — Sophos FirewallCWE-94 | 8.8 | High | 2024-12-19 |
| CVE-2024-12728 | Sophos Firewall 安全漏洞 — Sophos FirewallCWE-1391 | 9.8 | Critical | 2024-12-19 |
| CVE-2024-12727 | Sophos Firewall 安全漏洞 — Sophos FirewallCWE-89 | 9.8 | Critical | 2024-12-19 |
| CVE-2023-5552 | Sophos Firewall 信息泄露漏洞 — Sophos FirewallCWE-200 | 7.1 | High | 2023-10-17 |
| CVE-2022-3711 | Sophos Firewall SQL注入漏洞 — Sophos Firewall | 4.3 | Medium | 2022-12-01 |
| CVE-2022-3713 | Sophos Firewall 代码注入漏洞 — Sophos Firewall | 8.8 | High | 2022-12-01 |
| CVE-2022-3710 | Sophos Firewall SQL注入漏洞 — Sophos Firewall | 2.7 | Low | 2022-12-01 |
| CVE-2022-3709 | Sophos Firewall 跨站脚本漏洞 — Sophos Firewall | 6.8 | Medium | 2022-12-01 |
| CVE-2022-3696 | Sophos Firewall 代码注入漏洞 — Sophos Firewall | 7.2 | High | 2022-12-01 |
| CVE-2022-3226 | Sophos Firewall 操作系统命令注入漏洞 — Sophos Firewall | 7.2 | High | 2022-12-01 |
| CVE-2022-3236 | Sophos Firewall 代码注入漏洞 — Sophos Firewall | 9.8 | Critical | 2022-09-23 |
| CVE-2022-1807 | Sophos Firewall SQL注入漏洞 — Sophos Firewall | 7.2 | High | 2022-09-07 |
| CVE-2021-25268 | Sophos Firewall 跨站脚本漏洞 — Sophos Firewall | 8.4 | High | 2022-05-05 |
| CVE-2021-25267 | Sophos Firewall 跨站脚本漏洞 — Sophos Firewall | 6.8 | Medium | 2022-05-05 |
| CVE-2022-0331 | Sophos Firewall 信息泄露漏洞 — Sophos Firewall | 5.3 | Medium | 2022-03-29 |
| CVE-2022-1040 | Sophos Firewall 授权问题漏洞 — Sophos Firewall | 9.8 | Critical | 2022-03-25 |
This page lists every published CVE security advisory associated with Sophos. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.