CVE-2022-22275

Summary

Improper Restriction of TCP Communication Channel in HTTP/S inbound traffic from WAN to DMZ bypassing security policy until TCP handshake potentially resulting in Denial of Service (DoS) attack if a target host is vulnerable.

Affected Software

VendorProductVersion RangeStatus
SonicWallSonicOSSonicOS Gen 7 TZ-Series 7.0.1-5030-R2007 and earlier versions.affected
SonicWallSonicOSSonicOS Gen 7 NSa-Series 7.0.1-5030-R2007 and earlier versions.affected
SonicWallSonicOSSonicOS Gen 7 NSv-Series 7.0.1.0-5030-1391 and earlier versions.affected
SonicWallSonicOSSonicOS Gen 7 NSsp-Series 7.0.1-5030-R780 and earlier versions.affected

Weaknesses

  • CWE-400: CWE-400: Uncontrolled Resource Consumption

ADP Enrichment

CVE Program Container

Additional References

References