-
Dear Customer,
We have recently been made aware of a critical security vulnerability in Sophos firewalls that could be exploited on systems where an unauthenticated attacker could reach the web admin or user portal. Some firewall devices belonging to customers with WAN access enabled have been identified as running older unsupported firmware versions or having automatic hotfixes disabled, leaving your devices vulnerable.
If you’re currently running an older version, we strongly recommend you immediately upgrade all firewall firmware to the most current version, Sophos Firewall OS v19 MR1.
In addition, you should enable your firewalls to “Allow automatic installation of hotfixes” as soon as possible so their devices can immediately receive all security patches. Please visit this knowledge base article to verify that the hotfix has been applied.
As a security best practice, it is also recommended to disable WAN access to the web admin and the user portal and use VPN or Sophos Central management for remote access.
You can consult the Hardening Your Sophos Firewall best-practices guide for more information.
If you have an active management agreement with us that covers your firewall, you can rest assured that your device is already on the latest firmware version and is not impacted.
If you are not an MSC customer but would like our assistance in patching or would like to get more information about our management services, please Contact Us
Thanks,
Velocity WiFi – IT Support Team
Sophos Firewall Vulnerability CVE-2022-3236
In need of IT solutions? Call us today at (386) 935-WiFi
About Us
Get in touch, we would love to hear from you.
27261 77th Rd, Branford, FL 32008
info@velocitywifi.net
(386) 935-WiFiNewsletter
(C) Velocity WiFi | Login