How severe is CVE-2024-12727?

CVE-2024-12727 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-12727

Name: firewall
Author: sophos

9.8CRITICAL

A pre-auth SQL injection vulnerability in the email protection feature of Sophos Firewall versions older than 21.0 MR1 (21.0.1) allows access to the reporting database and can lead to remote code exec

Published: 12/19/2024Updated: 11/12/2025

Description

A pre-auth SQL injection vulnerability in the email protection feature of Sophos Firewall versions older than 21.0 MR1 (21.0.1) allows access to the reporting database and can lead to remote code execution if a specific configuration of Secure PDF eXchange (SPX) is enabled in combination with the firewall running in High Availability (HA) mode.

AI AnalysisPowered by AI

Affected Products

sophosfirewall_firmware

sophosfirewall

References

https://www.sophos.com/en-us/security-advisories/sophos-sa-20241219-sfos-rce
PatchVendor Advisory