CVE-2023-1101
First published: Thu Mar 02 2023(Updated: )
SonicOS SSLVPN improper restriction of excessive MFA attempts vulnerability allows an authenticated attacker to use excessive MFA codes.
Credit: PSIRT@sonicwall.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SonicWall SonicOS | <7.0.1-5111 | |
| SonicWall NSA 2700 | ||
| SonicWall NSA 3700 Firmware | ||
| SonicWall NSA 4700 | ||
| SonicWall NSA 5700 | ||
| SonicWall NSA 6700 Firmware | ||
| SonicWall NSSP 10700 Firmware | ||
| SonicWall NSSP 11700 | ||
| SonicWall NSSP 13700 | ||
| SonicWall NSV 270 | ||
| SonicWall NSV 470 Firmware | ||
| SonicWall NSv 870 | ||
| SonicWall TZ270 | ||
| SonicWall TZ270W Firmware | ||
| SonicWall TZ370 | ||
| SonicWall TZ370W Firmware | ||
| SonicWall TZ470 Firmware | ||
| SonicWall TZ470W Firmware | ||
| SonicWall TZ570 Firmware | ||
| SonicWall TZ570P Firmware | ||
| SonicWall TZ570W Firmware | ||
| SonicWall TZ670 Firmware | ||
| SonicWall SonicOS | <=7.0.1-5083 | |
| SonicWall NSSP 15700 | ||
| SonicWall SonicOS | <=6.5.4.4-44v-21-1551 | |
| SonicWall NSV 10 Firmware | ||
| SonicWall NSV 100 Firmware | ||
| SonicWall NSV 1600 | ||
| SonicWall NSv | ||
| SonicWall NSv 25 | ||
| SonicWall NSV 300 | ||
| SonicWall NSV 400 Firmware | ||
| SonicWall NSV 50 Firmware | ||
| SonicWall NSV800 | ||
| SonicWall SonicOS | <=6.5.4.11-97n | |
| SonicWall NSA 2600 | ||
| SonicWall NSA 2650 | ||
| SonicWall NSA 3600 | ||
| SonicWall NSA 3650 Firmware | ||
| SonicWall NSA 4600 | ||
| SonicWall NSA 4650 Firmware | ||
| SonicWall NSA 5600 | ||
| SonicWall NSA 5650 | ||
| SonicWall NSA 6600 | ||
| SonicWall NSA 6650 | ||
| SonicWall NSA 9250 | ||
| SonicWall NSA 9450 | ||
| SonicWall NSA 9650 | ||
| SonicWall NSSP 12400 | ||
| SonicWall NSSP 12800 | ||
| SonicWall SuperMassive E10200 | ||
| SonicWall SuperMassive E10400 | ||
| SonicWall SM 10800 | ||
| SonicWall SM 9200 | ||
| SonicWall SM 9400 | ||
| SonicWall SuperMassive 9600 | ||
| SonicWall SuperMassive 9800 | ||
| SonicWall SOHO 250W | ||
| SonicWall SOHO 250W Firmware | ||
| SonicWall SOHO | ||
| SonicWall TZ300 Firmware | ||
| SonicWall TZ300P Firmware | ||
| SonicWall TZ300W Firmware | ||
| SonicWall TZ350 Firmware | ||
| SonicWall TZ350W Firmware | ||
| SonicWall TZ400W Firmware | ||
| SonicWall TZ400W Firmware | ||
| SonicWall TZ500W | ||
| SonicWall TZ500W Firmware | ||
| SonicWall TZ600 | ||
| SonicWall TZ 600P | ||
| All of | ||
| SonicWall SonicOS | <7.0.1-5111 | |
| Any of | ||
| SonicWall NSA 2700 | ||
| SonicWall NSA 3700 Firmware | ||
| SonicWall NSA 4700 | ||
| SonicWall NSA 5700 | ||
| SonicWall NSA 6700 Firmware | ||
| SonicWall NSSP 10700 Firmware | ||
| SonicWall NSSP 11700 | ||
| SonicWall NSSP 13700 | ||
| SonicWall NSV 270 | ||
| SonicWall NSV 470 Firmware | ||
| SonicWall NSv 870 | ||
| SonicWall TZ270 | ||
| SonicWall TZ270W Firmware | ||
| SonicWall TZ370 | ||
| SonicWall TZ370W Firmware | ||
| SonicWall TZ470 Firmware | ||
| SonicWall TZ470W Firmware | ||
| SonicWall TZ570 Firmware | ||
| SonicWall TZ570P Firmware | ||
| SonicWall TZ570W Firmware | ||
| SonicWall TZ670 Firmware | ||
| All of | ||
| SonicWall SonicOS | <=7.0.1-5083 | |
| SonicWall NSSP 15700 | ||
| All of | ||
| SonicWall SonicOS | <=6.5.4.4-44v-21-1551 | |
| Any of | ||
| SonicWall NSV 10 Firmware | ||
| SonicWall NSV 100 Firmware | ||
| SonicWall NSV 1600 | ||
| SonicWall NSv | ||
| SonicWall NSv 25 | ||
| SonicWall NSV 300 | ||
| SonicWall NSV 400 Firmware | ||
| SonicWall NSV 50 Firmware | ||
| SonicWall NSV800 | ||
| All of | ||
| SonicWall SonicOS | <=6.5.4.11-97n | |
| Any of | ||
| SonicWall NSA 2600 | ||
| SonicWall NSA 2650 | ||
| SonicWall NSA 3600 | ||
| SonicWall NSA 3650 Firmware | ||
| SonicWall NSA 4600 | ||
| SonicWall NSA 4650 Firmware | ||
| SonicWall NSA 5600 | ||
| SonicWall NSA 5650 | ||
| SonicWall NSA 6600 | ||
| SonicWall NSA 6650 | ||
| SonicWall NSA 9250 | ||
| SonicWall NSA 9450 | ||
| SonicWall NSA 9650 | ||
| SonicWall NSSP 12400 | ||
| SonicWall NSSP 12800 | ||
| SonicWall SuperMassive E10200 | ||
| SonicWall SuperMassive E10400 | ||
| SonicWall SM 10800 | ||
| SonicWall SM 9200 | ||
| SonicWall SM 9400 | ||
| SonicWall SuperMassive 9600 | ||
| SonicWall SuperMassive 9800 | ||
| SonicWall SOHO 250W | ||
| SonicWall SOHO 250W Firmware | ||
| SonicWall SOHO | ||
| SonicWall TZ300 Firmware | ||
| SonicWall TZ300P Firmware | ||
| SonicWall TZ300W Firmware | ||
| SonicWall TZ350 Firmware | ||
| SonicWall TZ350W Firmware | ||
| SonicWall TZ400W Firmware | ||
| SonicWall TZ400W Firmware | ||
| SonicWall TZ500W | ||
| SonicWall TZ500W Firmware | ||
| SonicWall TZ600 | ||
| SonicWall TZ 600P |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-1101?
The severity of CVE-2023-1101 is high with a CVSS score of 8.8.
How can I mitigate the SonicOS SSLVPN improper restriction of excessive MFA attempts vulnerability (CVE-2023-1101)?
To mitigate the vulnerability, update SonicOS to version 7.0.1-5111 as suggested by the vendor.
Is Sonicwall Nsa 2700 vulnerable to CVE-2023-1101?
No, Sonicwall Nsa 2700 is not vulnerable to CVE-2023-1101 as confirmed by the vendor.
- agent/type
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/sonicwall
- canonical/sonicwall sonicos
- canonical/sonicwall nsa 2700
- canonical/sonicwall nsa 3700 firmware
- canonical/sonicwall nsa 4700
- canonical/sonicwall nsa 5700
- canonical/sonicwall nsa 6700 firmware
- canonical/sonicwall nssp 10700 firmware
- canonical/sonicwall nssp 11700
- canonical/sonicwall nssp 13700
- canonical/sonicwall nsv 270
- canonical/sonicwall nsv 470 firmware
- canonical/sonicwall nsv 870
- canonical/sonicwall tz270
- canonical/sonicwall tz270w firmware
- canonical/sonicwall tz370
- canonical/sonicwall tz370w firmware
- canonical/sonicwall tz470 firmware
- canonical/sonicwall tz470w firmware
- canonical/sonicwall tz570 firmware
- canonical/sonicwall tz570p firmware
- canonical/sonicwall tz570w firmware
- canonical/sonicwall tz670 firmware
- version/sonicwall sonicos/7.0.1-5083
- canonical/sonicwall nssp 15700
- version/sonicwall sonicos/6.5.4.4-44v-21-1551
- canonical/sonicwall nsv 10 firmware
- canonical/sonicwall nsv 100 firmware
- canonical/sonicwall nsv 1600
- canonical/sonicwall nsv
- canonical/sonicwall nsv 25
- canonical/sonicwall nsv 300
- canonical/sonicwall nsv 400 firmware
- canonical/sonicwall nsv 50 firmware
- canonical/sonicwall nsv800
- version/sonicwall sonicos/6.5.4.11-97n
- canonical/sonicwall nsa 2600
- canonical/sonicwall nsa 2650
- canonical/sonicwall nsa 3600
- canonical/sonicwall nsa 3650 firmware
- canonical/sonicwall nsa 4600
- canonical/sonicwall nsa 4650 firmware
- canonical/sonicwall nsa 5600
- canonical/sonicwall nsa 5650
- canonical/sonicwall nsa 6600
- canonical/sonicwall nsa 6650
- canonical/sonicwall nsa 9250
- canonical/sonicwall nsa 9450
- canonical/sonicwall nsa 9650
- canonical/sonicwall nssp 12400
- canonical/sonicwall nssp 12800
- canonical/sonicwall supermassive e10200
- canonical/sonicwall supermassive e10400
- canonical/sonicwall sm 10800
- canonical/sonicwall sm 9200
- canonical/sonicwall sm 9400
- canonical/sonicwall supermassive 9600
- canonical/sonicwall supermassive 9800
- canonical/sonicwall soho 250w
- canonical/sonicwall soho 250w firmware
- canonical/sonicwall soho
- canonical/sonicwall tz300 firmware
- canonical/sonicwall tz300p firmware
- canonical/sonicwall tz300w firmware
- canonical/sonicwall tz350 firmware
- canonical/sonicwall tz350w firmware
- canonical/sonicwall tz400w firmware
- canonical/sonicwall tz500w
- canonical/sonicwall tz500w firmware
- canonical/sonicwall tz600
- canonical/sonicwall tz 600p