Nov. 20, 2023, 11:43 a.m. | Helga Labus

Help Net Security

CISA has added three vulnerabilities to its Known Exploited Vulnerabilities catalog, among them a critical vulnerability (CVE-2023-1671) in Sophos Web Appliance that has been patched by the company in April 2023. About CVE-2023-1671 CVE-2023-1671 is a pre-auth command injection vulnerability in the warn-proceed handler of Sophos Web Appliance that allows attackers to execute arbitrary code. Sophos Web Appliance is a web gateway appliance that functions as a web proxy and scans potentially harmful content for … More

The post …

april attackers auth catalog cisa command command injection critical critical vulnerability cve don't miss enterprise exploit exploited exploited vulnerabilities hot stuff injection known exploited known exploited vulnerabilities known exploited vulnerabilities catalog poc sophos sophos web appliance the company vulnerabilities vulnerability vulnerability exploited web

Security Analyst Consultant

@ Kalles Group | Seattle Area

Principal Engineer - SecEng (Prisma Cloud Application Security)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel

Privacy Officer BeNeLux

@ Wolters Kluwer | NLD - Alphen Aan Den Rijn

Senior Information Security Specialist :Threat Intelligence

@ NTT DATA | Johannesburg, South Africa

Cyber Security - SOC Analyst (L2)

@ WPP | Chennai

Cybersecurity Analyst - A&A Support

@ Maveris | Washington, District of Columbia, United States - Remote