A post-authentication arbitrary file read vulnerability impacting end-of-life Secure Remote Access (SRA) products and older firmware versions of Secure Mobile Access (SMA) 100 series products, specifically the SRA appliances running all 8.x, 9.0.0.5-19sv and earlier versions and Secure Mobile Access (SMA) 100 series products running older firmware 9.0.0.9-26sv and earlier versions
References
Link | Resource |
---|---|
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0006 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
History
07 Nov 2023, 03:43
Type | Values Removed | Values Added |
---|---|---|
Summary | A post-authentication arbitrary file read vulnerability impacting end-of-life Secure Remote Access (SRA) products and older firmware versions of Secure Mobile Access (SMA) 100 series products, specifically the SRA appliances running all 8.x, 9.0.0.5-19sv and earlier versions and Secure Mobile Access (SMA) 100 series products running older firmware 9.0.0.9-26sv and earlier versions |
24 Jul 2023, 13:44
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-22 |
21 Apr 2022, 15:23
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-287 | |
References | (CONFIRM) https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0006 - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 4.0
v3 : 4.9 |
CPE | cpe:2.3:o:sonicwall:sma_210_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sonicwall:sma_500v:-:*:*:*:*:*:*:* cpe:2.3:o:sonicwall:sra_4200_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sonicwall:sra_1200:-:*:*:*:*:*:*:* cpe:2.3:o:sonicwall:sma_410_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sonicwall:sma_500v_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sonicwall:sra_1200_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sonicwall:sma_410:-:*:*:*:*:*:*:* cpe:2.3:h:sonicwall:sra_4200:-:*:*:*:*:*:*:* cpe:2.3:h:sonicwall:sma_210:-:*:*:*:*:*:*:* |
|
First Time |
Sonicwall sma 500v
Sonicwall sra 4200 Sonicwall sma 410 Firmware Sonicwall sma 210 Firmware Sonicwall Sonicwall sra 1200 Firmware Sonicwall sma 410 Sonicwall sma 500v Firmware Sonicwall sra 4200 Firmware Sonicwall sra 1200 Sonicwall sma 210 |
13 Apr 2022, 06:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-04-13 06:15
Updated : 2024-04-11 01:14
NVD link : CVE-2022-22279
Mitre link : CVE-2022-22279
CVE.ORG link : CVE-2022-22279
JSON object : View
Products Affected
sonicwall
- sma_210
- sra_4200_firmware
- sra_1200_firmware
- sra_4200
- sma_210_firmware
- sma_500v
- sma_410
- sma_500v_firmware
- sra_1200
- sma_410_firmware