Two High-Threat Vulnerabilities Discovered
Sophos Firewall Patch
by Artie Kaye
A high-threat vulnerability has been found in Sophos Firewall. Sophos has identified the problem and has released a patch. If you’re running Sophos Firewall version 18.5.3 or older, patch this as soon as you can. It is actively being sought after and exploited by malicious entities.
The flaw is listed as CVE-2022-1040.
Third-Party references:
Click the links below to learn more details. (Opens in a new tab/window.)
QNAP OpenSSL Exploit
by Artie Kaye
If you’re using QNAP network attached storage, there’s no patch yet for the OpenSSL exploit. The flaw could be used to facilitate denial of service attacks. When patches are made available, please update them to protect your machines.
The flaw is listed as CVE-2022-0778.
Third-Party references:
Click the links below to learn more details. (Opens in a new tab/window.)