What is CVE-2023-0656?

CVE-2023-0656 is a stack-based buffer overflow vulnerability in SonicOS.

How can a remote attacker exploit CVE-2023-0656?

A remote unauthenticated attacker can exploit CVE-2023-0656 to cause a Denial of Service (DoS), potentially crashing the affected firewall.

Which version of SonicOS is affected by CVE-2023-0656?

SonicOS version 7.0.1-5111 is affected by CVE-2023-0656.

What is the severity of CVE-2023-0656?

The severity of CVE-2023-0656 is high, with a CVSS score of 7.5.

How can I get more information about CVE-2023-0656?

More information about CVE-2023-0656 can be found at the following reference: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0004

Vulnerability/
CVE-2023-0656

high

7.5

CWE

787 121 119

2/3/2023

7/3/2025

CVE-2023-0656: Buffer Overflow

First published: Thu Mar 02 2023(Updated: )

A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.

Credit: PSIRT@sonicwall.com

Affected Software	Affected Version	How to fix
SonicWall Next-Generation Firewall	=series 6
SonicWall Next-Generation Firewall	=series 7
SonicWall SonicOS	<=7.0.1-5111
SonicWall NSA 2700
SonicWall NSA 3700 Firmware
SonicWall NSA 4700
SonicWall NSA 5700
SonicWall NSA 6700 Firmware
SonicWall NSSP 10700 Firmware
SonicWall NSSP 11700
SonicWall NSSP 13700
SonicWall NSV 270
SonicWall NSV 470 Firmware
SonicWall NSv 870
SonicWall TZ270
SonicWall TZ270W Firmware
SonicWall TZ370
SonicWall TZ370W Firmware
SonicWall TZ470 Firmware
SonicWall TZ470W Firmware
SonicWall TZ570 Firmware
SonicWall TZ570P Firmware
SonicWall TZ570W Firmware
SonicWall TZ670 Firmware
SonicWall SonicOS	<=7.0.1-5083
SonicWall NSSP 15700
SonicWall SonicOS	<=6.5.4.4-44v-21-1551
SonicWall NSV 10 Firmware
SonicWall NSV 100 Firmware
SonicWall NSV 1600
SonicWall NSv
SonicWall NSv 25
SonicWall NSV 300
SonicWall NSV 400 Firmware
SonicWall NSV 50 Firmware
SonicWall NSV800

Never miss a vulnerability like this again

Reference Links

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2022-22274

Frequently Asked Questions

What is CVE-2023-0656?
CVE-2023-0656 is a stack-based buffer overflow vulnerability in SonicOS.
How can a remote attacker exploit CVE-2023-0656?
A remote unauthenticated attacker can exploit CVE-2023-0656 to cause a Denial of Service (DoS), potentially crashing the affected firewall.
Which version of SonicOS is affected by CVE-2023-0656?
SonicOS version 7.0.1-5111 is affected by CVE-2023-0656.
What is the severity of CVE-2023-0656?
The severity of CVE-2023-0656 is high, with a CVSS score of 7.5.
How can I get more information about CVE-2023-0656?
More information about CVE-2023-0656 can be found at the following reference: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0004

agent/type
agent/author
agent/weakness
agent/description
agent/references
collector/bleeping-computer
source/BleepingComputer
alias/CVE-2022-22274
alias/CVE-2023-0656
agent/severity
collector/the-register
source/The Register
agent/first-publish-date
agent/event
agent/trending
agent/source
agent/news-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/mitre-cve
source/MITRE
agent/last-modified-date
collector/nvd-index
vendor/sonicwall
canonical/sonicwall next-generation firewall
version/sonicwall next-generation firewall/series 6
version/sonicwall next-generation firewall/series 7
canonical/sonicwall sonicos ssl vpn nac agent
version/sonicwall sonicos ssl vpn nac agent/7.0.1-5111
canonical/sonicwall nsa 2700
canonical/sonicwall nsa 3700 firmware
canonical/sonicwall nsa 4700
canonical/sonicwall nsa 5700
canonical/sonicwall nsa 6700 firmware
canonical/sonicwall nssp 10700 firmware
canonical/sonicwall nssp 11700
canonical/sonicwall nssp 13700
canonical/sonicwall nsv 270
canonical/sonicwall nsv 470 firmware
canonical/sonicwall nsv 870
canonical/sonicwall tz270
canonical/sonicwall tz270w firmware
canonical/sonicwall tz370
canonical/sonicwall tz370w firmware
canonical/sonicwall tz470 firmware
canonical/sonicwall tz470w firmware
canonical/sonicwall tz570 firmware
canonical/sonicwall tz570p firmware
canonical/sonicwall tz570w firmware
canonical/sonicwall tz670 firmware
version/sonicwall sonicos ssl vpn nac agent/7.0.1-5083
canonical/sonicwall nssp 15700
version/sonicwall sonicos ssl vpn nac agent/6.5.4.4-44v-21-1551
canonical/sonicwall nsv 10 firmware
canonical/sonicwall nsv 100 firmware
canonical/sonicwall nsv 1600
canonical/sonicwall nsv
canonical/sonicwall nsv 25
canonical/sonicwall nsv 300
canonical/sonicwall nsv 400 firmware
canonical/sonicwall nsv 50 firmware
canonical/sonicwall nsv800