A critical vulnerability has been discovered in the Sophos Firewall user portal and web admin accounts. This vulnerability allows a malicious actor to bypass authentication, giving them the ability to perform remote code execution on the firewall. The vulnerability has been patched by Sophos, and if your school has the default setting of “Allow automatic installation of hotfixes” enabled there is no further action required.

We recommend checking your firewall settings to ensure this is enabled – you can find more information on how to do this here.

Please refer to Sophos’ official advisory for more information.