{
"cve": "CVE-2022-1040",
"artifacts": [
{
"vendor": "Sophos",
"product": [
"Firewall"
],
"dateAdded": "2022-09-15",
"artifactName": "Sophos Webconsole and User Portal Authentication Bypass",
"exploit": true,
"versionScanner": true,
"pcap": true,
"suricataRule": true,
"yara": false,
"cisaKEV": true,
"shodanQueries": [
"https://www.shodan.io/search?query=title%3A%22Sophos%22+html%3A%22Without+JavaScript+support+user+portal+will+not+work.%22",
"https://www.shodan.io/search?query=title%3A%22Sophos%22+html%3A%22Without+JavaScript+support+web+console+will+not+work.%22"
],
"censysQueries": [
"https://search.censys.io/search?resource=hosts&sort=RELEVANCE&per_page=25&virtual_hosts=EXCLUDE&q=services.http.response.body%3A%22Without+JavaScript+support+user+portal+will+not+work.%22+and+services.http.response.html_title%3A%22Sophos%22",
"https://search.censys.io/search?resource=hosts&sort=RELEVANCE&per_page=25&virtual_hosts=EXCLUDE&q=services.http.response.body%3A%22Without+JavaScript+support+web+console+will+not+work.%22+and+services.http.response.html_title%3A%22Sophos%22"
],
"greynoiseQueries": [
"https://viz.greynoise.io/tag/sophos-sg-utm-remote-code-execution-attempt"
],
"artifactsDownloadURL": "https://..."
}
]
}