Sophos Sfos
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Sophos Sfos.
By the Year
In 2026 there have been 0 vulnerabilities in Sophos Sfos. Sfos did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 2 | 7.55 |
| 2021 | 0 | 0.00 |
| 2020 | 1 | 0.00 |
It may take a day or so for new Sfos vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Sophos Sfos Security Vulnerabilities
An information disclosure vulnerability in Webadmin
CVE-2022-0331
5.3 - Medium
- March 29, 2022
An information disclosure vulnerability in Webadmin allows an unauthenticated remote attacker to read the device serial number in Sophos Firewall version v18.5 MR2 and older.
An authentication bypass vulnerability in the User Portal and Webadmin
CVE-2022-1040
9.8 - Critical
- March 25, 2022
An authentication bypass vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v18.5 MR3 and older.
A SQL injection issue was found in SFOS 17.0
CVE-2020-12271
- April 27, 2020
A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall devices, as exploited in the wild in April 2020. This affected devices configured with either the administration (HTTPS) service or the User Portal exposed on the WAN zone. A successful attack may have caused remote code execution that exfiltrated usernames and hashed passwords for the local device admin(s), portal admins, and user accounts used for remote access (but not external Active Directory or LDAP passwords)
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Sophos Sfos or by Sophos? Click the Watch button to subscribe.
