CVE-2022-22278 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 49%

Affected Products (NVD)

Vendor	Product	Version
sonicwall	tz300p_firmware	𝑥 < 7.0.1
sonicwall	tz300w_firmware	𝑥 < 7.0.1
sonicwall	tz350_firmware	𝑥 < 7.0.1
sonicwall	tz350w_firmware	𝑥 < 7.0.1
sonicwall	nssp_10700_firmware	𝑥 < 7.0.1.0
sonicwall	nssp_11700_firmware	𝑥 < 7.0.1.0
sonicwall	nssp_12400_firmware	𝑥 < 7.0.1.0
sonicwall	nssp_12800_firmware	𝑥 < 7.0.1.0
sonicwall	nssp_13700_firmware	𝑥 < 7.0.1.0
sonicwall	nssp_15700_firmware	𝑥 < 7.0.1.0
sonicwall	tz370_firmware	𝑥 < 7.0.1
sonicwall	tz370w_firmware	𝑥 < 7.0.1
sonicwall	tz400_firmware	𝑥 < 7.0.1
sonicwall	nsv_10_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_100_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_1600_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_200_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_25_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_270_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_300_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_400_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_470_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_50_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_800_firmware	𝑥 < 7.0.1.0
sonicwall	nsv_870_firmware	𝑥 < 7.0.1.0
sonicwall	tz400w_firmware	𝑥 < 7.0.1
sonicwall	tz470_firmware	𝑥 < 7.0.1
sonicwall	tz470w_firmware	𝑥 < 7.0.1
sonicwall	tz500_firmware	𝑥 < 7.0.1
sonicwall	nsa_2650_firmware	𝑥 < 7.0.1
sonicwall	nsa_2700_firmware	𝑥 < 7.0.1
sonicwall	nsa_3650_firmware	𝑥 < 7.0.1
sonicwall	nsa_3700_firmware	𝑥 < 7.0.1
sonicwall	nsa_4650_firmware	𝑥 < 7.0.1
sonicwall	nsa_4700_firmware	𝑥 < 7.0.1
sonicwall	nsa_5650_firmware	𝑥 < 7.0.1
sonicwall	nsa_5700_firmware	𝑥 < 7.0.1
sonicwall	nsa_6650_firmware	𝑥 < 7.0.1
sonicwall	nsa_6700_firmware	𝑥 < 7.0.1
sonicwall	nsa_9250_firmware	𝑥 < 7.0.1
sonicwall	nsa_9450_firmware	𝑥 < 7.0.1
sonicwall	nsa_9650_firmware	𝑥 < 7.0.1
sonicwall	tz500w_firmware	𝑥 < 7.0.1
sonicwall	tz570_firmware	𝑥 < 7.0.1
sonicwall	tz570p_firmware	𝑥 < 7.0.1
sonicwall	tz570w_firmware	𝑥 < 7.0.1
sonicwall	tz600_firmware	𝑥 < 7.0.1
sonicwall	tz600p_firmware	𝑥 < 7.0.1
sonicwall	tz670_firmware	𝑥 < 7.0.1

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-770 - Allocation of Resources Without Limits or Throttling
The software allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0004