A vulnerability, which was classified as very critical, has been found in Sophos Firewall up to 20.0 MR2. This issue affects some unknown processing of the component SSH. The manipulation leads to use of weak credentials.

The identification of this vulnerability is CVE-2024-12728. The attack may be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.