Vulnerability Sophos XG Firewall via Email Quarantine July 9, 2020July 9, 2020 PCIS Support Team Security An attacker can use a SQL injection via Email Quarantine of Sophos XG Firewall, in order to read or alter data, identified by CVE-2020-15504. Related:Command injection prevention