{"id":10443,"date":"2025-07-24T12:33:05","date_gmt":"2025-07-24T05:33:05","guid":{"rendered":"https:\/\/infosec.new88088.net\/?p=10443"},"modified":"2026-02-05T12:33:12","modified_gmt":"2026-02-05T05:33:12","slug":"sophos-va-loat-lo-hong-tuong-lua-nghiem-trong-co-loi-cho-phep-chiem-quyen-tu-xa","status":"publish","type":"post","link":"https:\/\/infosec.new88088.net\/2025\/07\/24\/sophos-va-loat-lo-hong-tuong-lua-nghiem-trong-co-loi-cho-phep-chiem-quyen-tu-xa\/","title":{"rendered":"Sophos v\u00e1 lo\u1ea1t l\u1ed7 h\u1ed5ng t\u01b0\u1eddng l\u1eeda nghi\u00eam tr\u1ecdng, c\u00f3 l\u1ed7i cho ph\u00e9p chi\u1ebfm quy\u1ec1n t\u1eeb xa"},"content":{"rendered":"<p><b>Sophos v\u1eeba c\u00f4ng b\u1ed1 n\u0103m l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt \u0111\u1ed9c l\u1eadp trong s\u1ea3n ph\u1ea9m Sophos Firewall, trong \u0111\u00f3 c\u00f3 hai l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng cho ph\u00e9p th\u1ef1c thi m\u00e3 t\u1eeb xa m\u00e0 kh\u00f4ng c\u1ea7n x\u00e1c th\u1ef1c. Th\u00f4ng b\u00e1o \u0111\u01b0\u1ee3c ph\u00e1t h\u00e0nh ng\u00e0y 21\/7\/2025, nh\u1ea5n m\u1ea1nh c\u00e1c l\u1ed7 h\u1ed5ng n\u00e0y \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn c\u00e1c c\u1ea5u h\u00ecnh nh\u1ea5t \u0111\u1ecbnh, d\u00f9 t\u1ef7 l\u1ec7 thi\u1ebft b\u1ecb b\u1ecb \u1ea3nh h\u01b0\u1edfng v\u1eabn d\u01b0\u1edbi 1% v\u1edbi h\u1ea7u h\u1ebft tr\u01b0\u1eddng h\u1ee3p.<\/b><\/p>\n<div style=\"text-align: center\">\n<div class=\"bbImageWrapper  js-lbImage\" title=\"sophos firewall.png\" data-src=\"https:\/\/whitehat.vn\/attachments\/sophos-firewall-png.17363\/\" data-lb-sidebar-href=\"\" data-lb-caption-extra-html=\"\" data-single-image=\"1\"><img fetchpriority=\"high\" decoding=\"async\" class=\"bbImage\" title=\"sophos firewall.png\" src=\"https:\/\/whitehat.vn\/attachments\/sophos-firewall-png.17363\/\" alt=\"sophos firewall.png\" width=\"700\" height=\"390\" data-url=\"\" data-zoom-target=\"1\" \/><\/div>\n<\/div>\n<p>Hai l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng nh\u1ea5t l\u00e0 CVE-2025-6704 v\u00e0 CVE-2025-7624, \u0111\u1ec1u \u0111\u1ea1t m\u1ee9c \u0111\u1ed9 nghi\u00eam tr\u1ecdng \u201ccritical\u201d v\u00e0 cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng th\u1ef1c thi m\u00e3 t\u1eeb xa m\u00e0 kh\u00f4ng c\u1ea7n x\u00e1c th\u1ef1c. CVE-2025-6704 l\u00e0 l\u1ed7 h\u1ed5ng ghi t\u1ec7p t\u00f9y \u00fd trong t\u00ednh n\u0103ng Secure PDF eXchange (SPX), c\u00f3 th\u1ec3 b\u1ecb khai th\u00e1c \u0111\u1ec3 th\u1ef1c thi m\u00e3 t\u1eeb xa trong m\u00f4i tr\u01b0\u1eddng ch\u01b0a x\u00e1c th\u1ef1c khi c\u1ea5u h\u00ecnh SPX c\u1ee5 th\u1ec3 \u0111\u01b0\u1ee3c k\u00edch ho\u1ea1t c\u00f9ng ch\u1ebf \u0111\u1ed9 High Availability. L\u1ed7 h\u1ed5ng n\u00e0y ch\u1ec9 \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn kho\u1ea3ng 0,05% thi\u1ebft b\u1ecb Sophos Firewall nh\u01b0ng ti\u1ec1m \u1ea9n r\u1ee7i ro cao. Trong khi \u0111\u00f3, CVE-2025-7624 l\u00e0 l\u1ed7 h\u1ed5ng SQL injection trong th\u00e0nh ph\u1ea7n proxy SMTP c\u0169, cho ph\u00e9p th\u1ef1c thi m\u00e3 t\u1eeb xa khi ch\u00ednh s\u00e1ch c\u00e1ch ly email \u0111\u01b0\u1ee3c b\u1eadt v\u00e0 h\u1ec7 \u0111i\u1ec1u h\u00e0nh Sophos Firewall \u0111\u00e3 \u0111\u01b0\u1ee3c n\u00e2ng c\u1ea5p t\u1eeb c\u00e1c phi\u00ean b\u1ea3n tr\u01b0\u1edbc 21.0 GA. Ph\u1ea1m vi \u1ea3nh h\u01b0\u1edfng c\u1ee7a l\u1ed7 h\u1ed5ng n\u00e0y r\u1ed9ng h\u01a1n, l\u00ean t\u1edbi 0,73% thi\u1ebft b\u1ecb \u0111ang tri\u1ec3n khai.<\/p>\n<p>C\u1ea3 hai l\u1ed7 h\u1ed5ng \u0111\u1ec1u \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n v\u00e0 b\u00e1o c\u00e1o c\u00f3 tr\u00e1ch nhi\u1ec7m b\u1edfi c\u00e1c nh\u00e0 nghi\u00ean c\u1ee9u b\u1ea3o m\u1eadt th\u00f4ng qua ch\u01b0\u01a1ng tr\u00ecnh bug bounty c\u1ee7a Sophos.<\/p>\n<p>Ba l\u1ed7 h\u1ed5ng kh\u00e1c c\u0169ng \u0111\u01b0\u1ee3c ghi nh\u1eadn v\u1edbi m\u1ee9c \u0111\u1ed9 nghi\u00eam tr\u1ecdng t\u1eeb cao \u0111\u1ebfn trung b\u00ecnh.<\/p>\n<ul>\n<li data-xf-list-type=\"ul\">CVE-2025-7382 (m\u1ee9c cao): L\u1ed7 h\u1ed5ng command injection trong giao di\u1ec7n WebAdmin, cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng c\u1eadn k\u1ec1 th\u1ef1c thi m\u00e3 t\u1eeb xa tr\u00ean thi\u1ebft b\u1ecb ph\u1ee5 khi ch\u1ebf \u0111\u1ed9 High Availability \u0111\u01b0\u1ee3c b\u1eadt v\u00e0 OTP \u0111\u01b0\u1ee3c k\u00edch ho\u1ea1t cho t\u00e0i kho\u1ea3n qu\u1ea3n tr\u1ecb. L\u1ed7 h\u1ed5ng n\u00e0y \u1ea3nh h\u01b0\u1edfng kho\u1ea3ng 1% thi\u1ebft b\u1ecb Sophos Firewall.<\/li>\n<li data-xf-list-type=\"ul\">CVE-2024-13974 (m\u1ee9c cao): L\u1ed7i logic nghi\u1ec7p v\u1ee5 trong th\u00e0nh ph\u1ea7n Up2Date, cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng ki\u1ec3m so\u00e1t m\u00f4i tr\u01b0\u1eddng DNS c\u1ee7a firewall \u0111\u1ec3 th\u1ef1c thi m\u00e3 t\u1eeb xa. L\u1ed7 h\u1ed5ng n\u00e0y do Trung t\u00e2m An ninh m\u1ea1ng Qu\u1ed1c gia Anh (NCSC) ph\u00e1t hi\u1ec7n v\u00e0 b\u00e1o c\u00e1o.<\/li>\n<li data-xf-list-type=\"ul\">CVE-2024-13973 (m\u1ee9c trung b\u00ecnh): L\u1ed7 h\u1ed5ng SQL injection sau x\u00e1c th\u1ef1c trong WebAdmin, c\u00f3 th\u1ec3 b\u1ecb l\u1ee3i d\u1ee5ng \u0111\u1ec3 th\u1ef1c thi m\u00e3 t\u00f9y \u00fd. \u0110\u00e2y c\u0169ng l\u00e0 l\u1ed7 h\u1ed5ng do NCSC ph\u00e1t hi\u1ec7n v\u00e0 ti\u1ebft l\u1ed9.<\/li>\n<\/ul>\n<p>T\u1ea5t c\u1ea3 c\u00e1c l\u1ed7 h\u1ed5ng \u0111\u00e3 \u0111\u01b0\u1ee3c Sophos x\u1eed l\u00fd b\u1eb1ng b\u1ea3n v\u00e1 t\u1ef1 \u0111\u1ed9ng th\u00f4ng qua c\u01a1 ch\u1ebf hotfix m\u1eb7c \u0111\u1ecbnh, kh\u00f4ng y\u00eau c\u1ea7u ng\u01b0\u1eddi d\u00f9ng can thi\u1ec7p th\u1ee7 c\u00f4ng n\u1ebfu \u0111ang b\u1eadt t\u00f9y ch\u1ecdn &#8220;Allow automatic installation of hotfixes&#8221;. Vi\u1ec7c kh\u1eafc ph\u1ee5c b\u1eaft \u0111\u1ea7u t\u1eeb th\u00e1ng 1\/2025 \u0111\u1ebfn th\u00e1ng 7\/2025, v\u1edbi CVE-2025-6704 \u0111\u01b0\u1ee3c v\u00e1 t\u1eeb ng\u00e0y 24\/6 v\u00e0 CVE-2025-7624 t\u1eeb ng\u00e0y 15\/7. Sophos kh\u1eb3ng \u0111\u1ecbnh ch\u01b0a c\u00f3 b\u1eb1ng ch\u1ee9ng cho th\u1ea5y c\u00e1c l\u1ed7 h\u1ed5ng n\u00e0y b\u1ecb khai th\u00e1c trong th\u1ef1c t\u1ebf, cho th\u1ea5y hi\u1ec7u qu\u1ea3 c\u1ee7a qu\u00e1 tr\u00ecnh c\u00f4ng b\u1ed1 ph\u1ed1i h\u1ee3p v\u00e0 v\u00e1 l\u1ed7i k\u1ecbp th\u1eddi.<\/p>\n<p>T\u1ed5 ch\u1ee9c \u0111ang v\u1eadn h\u00e0nh Sophos Firewall t\u1eeb phi\u00ean b\u1ea3n 19.0 MR2 tr\u1edf l\u00ean n\u00ean ki\u1ec3m tra tr\u1ea1ng th\u00e1i c\u00e0i \u0111\u1eb7t hotfix theo h\u01b0\u1edbng d\u1eabn c\u1ee7a h\u00e3ng. Nh\u1eefng h\u1ec7 th\u1ed1ng s\u1eed d\u1ee5ng phi\u00ean b\u1ea3n c\u0169 h\u01a1n c\u1ea7n \u0111\u01b0\u1ee3c n\u00e2ng c\u1ea5p \u0111\u1ec3 \u0111\u1ea3m b\u1ea3o nh\u1eadn \u0111\u01b0\u1ee3c c\u00e1c bi\u1ec7n ph\u00e1p b\u1ea3o v\u1ec7 m\u1edbi nh\u1ea5t tr\u01b0\u1edbc nguy c\u01a1 khai th\u00e1c.<\/p>\n<div style=\"text-align: right\"><b><i>Theo Cyber Press<\/i><\/b>\u200b<\/div>\n<div style=\"text-align: right;margin-top: 16px\"><i>Theo: <a href=\"https:\/\/whitehat.vn\/threads\/sophos-va-loat-lo-hong-tuong-lua-nghiem-trong-co-loi-cho-phep-chiem-quyen-tu-xa.18597\/\" target=\"_blank\" rel=\"noopener noreferrer\">https:\/\/whitehat.vn\/threads\/sophos-va-loat-lo-hong-tuong-lua-nghiem-trong-co-loi-cho-phep-chiem-quyen-tu-xa.18597\/<\/a><\/i><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Sophos v\u1eeba c\u00f4ng b\u1ed1 n\u0103m l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt \u0111\u1ed9c l\u1eadp trong s\u1ea3n ph\u1ea9m Sophos Firewall, trong \u0111\u00f3 c\u00f3 hai l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng cho ph\u00e9p th\u1ef1c thi m\u00e3 t\u1eeb xa m\u00e0 kh\u00f4ng c\u1ea7n x\u00e1c th\u1ef1c. Th\u00f4ng b\u00e1o \u0111\u01b0\u1ee3c ph\u00e1t h\u00e0nh ng\u00e0y 21\/7\/2025, nh\u1ea5n m\u1ea1nh c\u00e1c l\u1ed7 h\u1ed5ng n\u00e0y \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn c\u00e1c c\u1ea5u h\u00ecnh [&hellip;]<\/p>\n","protected":false},"author":46,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[33],"tags":[],"class_list":["post-10443","post","type-post","status-publish","format-standard","hentry","category-tin-tuc-cua-vien"],"_links":{"self":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts\/10443","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/users\/46"}],"replies":[{"embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/comments?post=10443"}],"version-history":[{"count":0,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts\/10443\/revisions"}],"wp:attachment":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/media?parent=10443"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/categories?post=10443"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/tags?post=10443"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}