First published: Fri May 13 2022(Updated: )
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions incorrectly restricts access to a resource using HTTP connections from an unauthorized actor leading to Improper Access Control vulnerability.
Credit: PSIRT@sonicwall.com
Affected Software | Affected Version | How to fix |
---|---|---|
SonicWall SMA 6200 | =12.4.0 | |
SonicWall SMA 6200 | =12.4.1 | |
SonicWall SMA 6200 Firmware | ||
SonicWall SMA 6210 | =12.4.0 | |
SonicWall SMA 6210 | =12.4.1 | |
SonicWall Secure Mobile Access | ||
SonicWall SMA 7200 | =12.4.0 | |
SonicWall SMA 7200 | =12.4.1 | |
SonicWall Secure Mobile Access | ||
SonicWall SMA 7210 Firmware | =12.4.0 | |
SonicWall SMA 7210 Firmware | =12.4.1 | |
SonicWall Secure Mobile Access | ||
SonicWall SMA 8000v Firmware | =12.4.0 | |
SonicWall SMA 8000v Firmware | =12.4.1 | |
SonicWall SMA 8000v Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this SonicWall SMA1000 series firmware vulnerability is CVE-2022-22282.
CVE-2022-22282 has a severity level of critical.
SonicWall SMA1000 series firmware versions 12.4.0, 12.4.1-02965, and earlier are affected by CVE-2022-22282.
CVE-2022-22282 can lead to an Improper Access Control vulnerability.
You can find more information about CVE-2022-22282 at the following link: [SonicWall Security Advisory SNWLID-2022-0009](https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0009)