CVE-2024-13974

Published Jul 21, 2025

Last updated 4 months ago

CVSS high 8.1
Business logic

Overview

Description
A business logic vulnerability in the Up2Date component of Sophos Firewall older than version 21.0 MR1 (20.0.1) can lead to attackers controlling the firewall’s DNS environment to achieve remote code execution.
Source
security-alert@sophos.com
NVD status
Analyzed
Products
firewall_firmware

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.1
Impact score
5.9
Exploitability score
2.2
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

security-alert@sophos.com
CWE-807

Social media

Hype score
Not currently trending

  1. Warning: Critical vulnerabilities in @Sophos #Firewall! CVE-2025-6704, CVE-2025-7624, CVE-2025-7382, CVE-2024-13974 CVSS 8.1, CVE-2024-13973 with highest CVSS 9.8. These flaws allow remote code execution! Update and secure your systems NOW! https://t.co/J4yeQ0AEP2 #RCE #Patch

    @CCBalert

    26 Jul 2025

    89 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 ثغرات حرجة في @Sophos و @SonicWall تتيح تنفيذ أوامر عن بُعد بدون مصادقة تم إصدار تحديثات أمنية لمعالجة الثغرات التالية: 🔹 Sophos: - CVE-2025-6704 (9.8) - CVE-2025-7624 (9.8) - CVE-2025

    @cyberscastx

    25 Jul 2025

    877 Impressions

    0 Retweets

    5 Likes

    1 Bookmark

    2 Replies

    0 Quotes

  3. Sophosのファイアウォールに重大な脆弱性-既に修正済み(CVE-2025-6704, CVE-2025-7624, CVE-2025-7382, CVE-2024-13974, CVE-2024-13973) #セキュリティ対策Lab #セキュリティ #Security https://t.co/2dK1mTiAZf

    @securityLab_jp

    24 Jul 2025

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. CVE-2024-13974 A business logic vulnerability in the Up2Date component of Sophos Firewall older than version 21.0 MR1 (20.0.1) can lead to attackers controlling the firewall’s DNS e… https://t.co/hLUQt7snG8

    @CVEnew

    21 Jul 2025

    278 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

Related CVEs

  1. The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a business logic vulnerability allows authenticated students to improperly mark themselves as present in attendance activities, including activities that have already expired, by directly accessing a crafted URL. This issue has been patched in version 4.2.CVE-2026-24774
  2. A vulnerability was identified in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The impacted element is an unknown function of the file /hungry/addtocart of the component Add-to-Cart Submission Endpoint. The manipulation of the argument price/allprice leads to business logic errors. The attack can be initiated remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.CVE-2026-1600
  3. A flaw was found in the keycloak-services component of Keycloak. This vulnerability allows the issuance of access and refresh tokens for disabled users, leading to unauthorized use of previously revoked privileges, via a business logic vulnerability in the Token Exchange implementation when a privileged client invokes the token exchange flow.CVE-2025-14559
  4. Microsoft Windows Information Disclosure VulnerabilityCVE-2026-20805
  5. Meta React Server Components Remote Code Execution VulnerabilityCVE-2025-55182

References

Sources include official advisories and independent security research.