Issued: Tuesday, 17 May, 2022 |
Last Revision: Tuesday, 17 May, 2022 |
Vendor: |
Product: |
Severity Level: |
SonicWall has published a patch for the SonicWall SMA 1000 Series to fix numerous vulnerabilities. An attacker could get unauthorized access to internal resources and potentially lead victims to malicious websites if the vulnerability is successfully exploited.
CVE/Vulnerability | Description | Severity |
CVE-2022-22282 | Unauthenticated Access Control Bypass | 8.2 |
CVE-2022-1701 | Use of hard-coded cryptographic key | 5.7 |
CVE-2022-1702 | URL redirection to an untrusted site (open redirection | 6.1 |
Table 1: Vulnerability details
Impacted Platforms | Impacted Firmware | Fixed Firmware |
SonicWall SMA 1000 Series- (SMA 6200, 6210, 7200, 7210, 8200v) | Firmware versions between 12.4.0 and 12.4.1 | 12.4.1-02994 |
Table 2: Vulnerable versions
Organizations are strongly encouraged to review and apply appropriate update using the vendor provided instruction.