← Back to Security Advisories Overview
Informational
CVE(s)
CVE-2024-47076
CVE-2024-47175
CVE-2024-47176
CVE-2024-47177
Updated:
Product(s)
Cloud Optix
Sophos Central
Sophos Firewall
Sophos RED
Sophos Switch
Sophos UTM
Sophos Wireless
Publication ID:
sophos-sa-20240926-CUPS
Article Version:
1
First Published:
Workaround:
No
Overview
On Thursday, September 23, 2024, Simone Margaritelli research discovered and reported vulnerabilities in CUPS which could result in unauthenticated Remote Code Execution (RCE). Assigned CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, CVE-2024-47177.
Are Sophos products are affected?
The following products have been reviewed against the CUPS vulnerability:
| Product or Service | Status | Description |
|---|---|---|
| Cloud Optix | Not affected | Component not present |
| SG UTM (all versions) | Not affected | Component not present |
| Sophos Central | Not affected | Component not present |
| Sophos Endpoint Protection (Windows) | Not affected | Component not present |
| Sophos Endpoint Protection (macOS) | Not affected | Component not present |
| Sophos Endpoint Protection (Linux) | Not affected | Component not present |
| Sophos Email | Not affected | Component not present |
| Sophos Firewall (all versions) | Not affected | Component not present |
| SophosConnect Client | Not affected | Component not present |
| Sophos Home (Windows) | Not affected | Component not present |
| Sophos Home (MacOS) | Not affected | Component not present |
| SophosLabs Intelix | Not affected | Component not present |
| Sophos Mobile | Not affected | Component not present |
| Sophos Mobile EAS Proxy | Not affected | Component not present |
| Sophos Mobile Control app (iOS + Android) | Not affected | Component not present |
| Sophos Intercept X for Mobile app (iOS + Android) | Not affected | Component not present |
| Sophos Secure Email app (iOS + Android) | Not affected | Component not present |
| Sophos Secure Workspace app (iOS + Android) | Not affected | Component not present |
| Sophos Chrome Security | Not affected | Component not present |
| Sophos PhishThreat | Not affected | Component not present |
| Sophos RED | Not affected | Component not present |
| Sophos AP/APX (SFOS Managed) | Not affected | Component not present |
| Sophos AP/APX (Central Managed) | Not affected | Component not present |
| Sophos Wireless | Not affected | Component not present |
| Sophos DNS Protection | Not affected | Component not present |
| SUSI | Not affected | Component not present |
| AV Engine (all platforms) | Not affected | Component not present |