CyberSec.Space Logo
Back to CVE Browser

CVE-2020-15069

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score37.3220%
EPSS Percentile88.30th
PublishedJun 29, 2020
Last ModifiedNov 7, 2025

Vulnerability Description

Sophos XG Firewall 17.x through v17.5 MR12 allows a Buffer Overflow and remote code execution via the HTTP/S Bookmarks feature for clientless access. Hotfix HF062020.1 was published for all firewalls running v17.x.

Affected Platforms (CPE)

πŸ’»
Sophos

Xg Firewall Firmware

>= 17.0 and < 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5
πŸ’»
Sophos

Xg Firewall Firmware

= 17.5

References & Advisories

πŸ”— https://community.sophos.com/b/security-blog/posts/advisory-buffer-overflow-vulnerability-in-user-portal
πŸ”— https://community.sophos.com/b/security-blog/posts/advisory-buffer-overflow-vulnerability-in-user-portal
πŸ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-15069

Related Vulnerabilities

CVE-2014-068310.0

The web management interface on the Cisco RV110W firewall with firmware 1.2.0.9 and earlier, RV215W router with firmware 1.1.0.5 a...

CVE-2012-179910.0

The web server on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 does ...

CVE-2020-108879.8

This vulnerability allows a firewall bypass on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. Au...

CVE-2018-40039.8

An exploitable heap overflow vulnerability exists in the mdnscap binary of the CUJO Smart Firewall running firmware 7003. The stri...