CVE-2022-22278

Summary

A vulnerability in SonicOS CFS (Content filtering service) returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service (DoS) attack

Affected Software

VendorProductVersion RangeStatus
SonicWallSonicOSSonicOS Gen 7 TZ-Series 7.0.1-5030-R2007 and earlier versions.affected
SonicWallSonicOSSonicOS Gen 7 NSa-Series 7.0.1-5030-R2007 and earlier versions.affected
SonicWallSonicOSSonicOS Gen 7 NSv-Series 7.0.1.0-5030-1391 and earlier versions.affected
SonicWallSonicOSSonicOS Gen 7 NSsp-Series 7.0.1-5030-R780 and earlier versions.affected

Weaknesses

  • CWE-770: CWE-770: Allocation of Resources Without Limits or Throttling

ADP Enrichment

CVE Program Container

Additional References

References