Configuring VPN Remote Access for the first time on your Sophos XG Firewall? Check out this useful Community post!

Sophos Central Firewall Manager maintenance scheduled for April 2nd, starting at 3:30am EDT. More info available here.

Exim CVE-2019-15846 and Sophos Products

Overview

CVE-2019-15846 outlines a vulnerability in Exim whereby a specially crafted SNI ending can be utilized to run arbitrary code on the vulnerable server

This vulnerability is not exploitable on any Sophos products, see the table below for more information.

Sophos Email Products and CVE-2019-15846

Product Vulnerable Further information
Sophos XG Firewall No The TLS headers that are used to exploit this vulnerability are stripped by the product before reaching the vulnerable Exim code. *
Sophos UTM No The TLS headers that are used to exploit this vulnerability are stripped by the product before reaching the vulnerable Exim code. *
Sophos Email on Central No Product doesn't utilize Exim
Sophos Email Appliance No Product doesn't utilize Exim
Puremessage for Unix No Product doesn't utilize Exim
Puremessage for Exchange No Product doesn't utilize Exim
Cyberoam No Product doesn't utilize Exim
Reflexion No  Product doesn't utilize Exim 


* Despite this vulnerability not being exploitable due to the current architecture of the Sophos XG and Sophos UTM products, we do still plan on releasing a patch for Exim on these platforms in an upcoming Maintenance Release. 

Related information