CVE-2022-47522
First published: Sat Apr 15 2023(Updated: )
The IEEE 802.11 specifications through 802.11ax allow physically proximate attackers to intercept (possibly cleartext) target-destined frames by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to the access point (such as authentication frames or re-association frames) to remove the target's original security context. This behavior occurs because the specifications do not require an access point to purge its transmit queue before removing a client's pairwise encryption key.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IEEE 802.11 | ||
| SonicWall TZ670 | ||
| SonicWall TZ670 Firmware | ||
| SonicWall TZ570W | ||
| SonicWall TZ570 Firmware | ||
| SonicWall TZ570P | ||
| SonicWall TZ570P Firmware | ||
| SonicWall TZ570W | ||
| SonicWall TZ570W Firmware | ||
| SonicWall TZ470 | ||
| SonicWall TZ470 Firmware | ||
| SonicWall TZ470 | ||
| SonicWall TZ470W Firmware | ||
| SonicWall TZ370 | ||
| SonicWall TZ370 | ||
| SonicWall TZ370W | ||
| SonicWall TZ370W Firmware | ||
| SonicWall TZ270W Firmware | ||
| SonicWall TZ270 | ||
| SonicWall TZ270W Firmware | ||
| SonicWall TZ270W Firmware | ||
| SonicWall TZ600P Firmware | ||
| SonicWall TZ600 | ||
| SonicWall TZ600P Firmware | ||
| SonicWall TZ 600P | ||
| SonicWall TZ500W Firmware | ||
| SonicWall TZ500W | ||
| SonicWall TZ500W Firmware | ||
| SonicWall TZ500W Firmware | ||
| SonicWall TZ400W Firmware | ||
| SonicWall TZ400W Firmware | ||
| SonicWall TZ400W Firmware | ||
| SonicWall TZ400W Firmware | ||
| SonicWall TZ350W Firmware | ||
| SonicWall TZ350 Firmware | ||
| SonicWall TZ350W Firmware | ||
| SonicWall TZ350W Firmware | ||
| SonicWall TZ300W Firmware | ||
| SonicWall TZ300 Firmware | ||
| SonicWall TZ300P Firmware | ||
| SonicWall TZ300P Firmware | ||
| SonicWall TZ300W Firmware | ||
| SonicWall TZ300W Firmware | ||
| SonicWall Soho 250 Firmware | ||
| SonicWall SOHO 250W | ||
| SonicWall SOHO 250W Firmware | ||
| SonicWall SOHO 250W | ||
| SonicWall SonicWave 231C | ||
| SonicWall SonicWave 231C | ||
| SonicWall SonicWave 224w Firmware | ||
| SonicWall SonicWave 224w Firmware | ||
| SonicWall SonicWave 432o Firmware | ||
| SonicWall SonicWave 432o Firmware | ||
| Sonicwall Sonicwave 621 | ||
| Sonicwall Sonicwave 621 Firmware | ||
| SonicWall SonicWave 641 Firmware | ||
| SonicWall SonicWave 641 Firmware | ||
| Sonicwall Sonicwave 681 | ||
| Sonicwall Sonicwave 681 Firmware | ||
| All of | ||
| SonicWall TZ670 | ||
| SonicWall TZ670 Firmware | ||
| All of | ||
| SonicWall TZ570W | ||
| SonicWall TZ570 Firmware | ||
| All of | ||
| SonicWall TZ570P | ||
| SonicWall TZ570P Firmware | ||
| All of | ||
| SonicWall TZ570W | ||
| SonicWall TZ570W Firmware | ||
| All of | ||
| SonicWall TZ470 | ||
| SonicWall TZ470 Firmware | ||
| All of | ||
| SonicWall TZ470 | ||
| SonicWall TZ470W Firmware | ||
| All of | ||
| SonicWall TZ370 | ||
| SonicWall TZ370 | ||
| All of | ||
| SonicWall TZ370W | ||
| SonicWall TZ370W Firmware | ||
| All of | ||
| SonicWall TZ270W Firmware | ||
| SonicWall TZ270 | ||
| All of | ||
| SonicWall TZ270W Firmware | ||
| SonicWall TZ270W Firmware | ||
| All of | ||
| SonicWall TZ600P Firmware | ||
| SonicWall TZ600 | ||
| All of | ||
| SonicWall TZ600P Firmware | ||
| SonicWall TZ 600P | ||
| All of | ||
| SonicWall TZ500W Firmware | ||
| SonicWall TZ500W | ||
| All of | ||
| SonicWall TZ500W Firmware | ||
| SonicWall TZ500W Firmware | ||
| All of | ||
| SonicWall TZ400W Firmware | ||
| SonicWall TZ400W Firmware | ||
| All of | ||
| SonicWall TZ400W Firmware | ||
| SonicWall TZ400W Firmware | ||
| All of | ||
| SonicWall TZ350W Firmware | ||
| SonicWall TZ350 Firmware | ||
| All of | ||
| SonicWall TZ350W Firmware | ||
| SonicWall TZ350W Firmware | ||
| All of | ||
| SonicWall TZ300W Firmware | ||
| SonicWall TZ300 Firmware | ||
| All of | ||
| SonicWall TZ300P Firmware | ||
| SonicWall TZ300P Firmware | ||
| All of | ||
| SonicWall TZ300W Firmware | ||
| SonicWall TZ300W Firmware | ||
| All of | ||
| SonicWall Soho 250 Firmware | ||
| SonicWall SOHO 250W | ||
| All of | ||
| SonicWall SOHO 250W Firmware | ||
| SonicWall SOHO 250W | ||
| All of | ||
| SonicWall SonicWave 231C | ||
| SonicWall SonicWave 231C | ||
| All of | ||
| SonicWall SonicWave 224w Firmware | ||
| SonicWall SonicWave 224w Firmware | ||
| All of | ||
| SonicWall SonicWave 432o Firmware | ||
| SonicWall SonicWave 432o Firmware | ||
| All of | ||
| Sonicwall Sonicwave 621 | ||
| Sonicwall Sonicwave 621 Firmware | ||
| All of | ||
| SonicWall SonicWave 641 Firmware | ||
| SonicWall SonicWave 641 Firmware | ||
| All of | ||
| Sonicwall Sonicwave 681 | ||
| Sonicwall Sonicwave 681 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-47522?
CVE-2022-47522 is a vulnerability in the IEEE 802.11 specifications that allows physically proximate attackers to intercept target-destined frames.
How severe is CVE-2022-47522?
CVE-2022-47522 has a severity rating of 7.5, which is considered high.
Which software is affected by CVE-2022-47522?
The affected software includes IEEE 802.11 and Sonicwall TZ series firmware versions.
How can an attacker exploit CVE-2022-47522?
An attacker can exploit CVE-2022-47522 by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to the access point.
Are Sonicwall TZ series devices vulnerable to CVE-2022-47522?
Yes, Sonicwall TZ series devices with vulnerable firmware versions are affected by CVE-2022-47522.
- agent/type
- agent/severity
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/source
- agent/event
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/ieee
- canonical/ieee 802.11
- vendor/sonicwall
- canonical/sonicwall tz670
- canonical/sonicwall tz670 firmware
- canonical/sonicwall tz570w
- canonical/sonicwall tz570 firmware
- canonical/sonicwall tz570p
- canonical/sonicwall tz570p firmware
- canonical/sonicwall tz570w firmware
- canonical/sonicwall tz470
- canonical/sonicwall tz470 firmware
- canonical/sonicwall tz470w firmware
- canonical/sonicwall tz370
- canonical/sonicwall tz370w
- canonical/sonicwall tz370w firmware
- canonical/sonicwall tz270w firmware
- canonical/sonicwall tz270
- canonical/sonicwall tz600p firmware
- canonical/sonicwall tz600
- canonical/sonicwall tz 600p
- canonical/sonicwall tz500w firmware
- canonical/sonicwall tz500w
- canonical/sonicwall tz400w firmware
- canonical/sonicwall tz350w firmware
- canonical/sonicwall tz350 firmware
- canonical/sonicwall tz300w firmware
- canonical/sonicwall tz300 firmware
- canonical/sonicwall tz300p firmware
- canonical/sonicwall soho 250 firmware
- canonical/sonicwall soho 250w
- canonical/sonicwall soho 250w firmware
- canonical/sonicwall sonicwave 231c
- canonical/sonicwall sonicwave 224w firmware
- canonical/sonicwall sonicwave 432o firmware
- canonical/sonicwall sonicwave 621
- canonical/sonicwall sonicwave 621 firmware
- canonical/sonicwall sonicwave 641 firmware
- canonical/sonicwall sonicwave 681
- canonical/sonicwall sonicwave 681 firmware