First published: Tue Oct 17 2023(Updated: )
SonicOS Use of Hard-coded Password vulnerability in the 'dynHandleBuyToolbar' demo function.
Credit: PSIRT@sonicwall.com
Affected Software | Affected Version | How to fix |
---|---|---|
SonicWall SonicOS | <7.0.1-5145 | |
SonicWall NSA 2700 | ||
SonicWall NSA 3700 Firmware | ||
SonicWall NSA 4700 | ||
SonicWall NSA 5700 | ||
SonicWall NSA 6700 Firmware | ||
SonicWall NSSP 10700 Firmware | ||
SonicWall NSSP 11700 | ||
SonicWall NSSP 13700 | ||
SonicWall NSSP 15700 | ||
SonicWall NSV 10 Firmware | ||
SonicWall NSV 100 Firmware | ||
SonicWall NSV 1600 Firmware | ||
SonicWall NSv 200 | ||
SonicWall NSv 25 | ||
SonicWall NSV 270 | ||
SonicWall NSV 300 | ||
SonicWall NSV 400 | ||
SonicWall NSV 470 | ||
SonicWall NSV 50 Firmware | ||
SonicWall NSV 800 | ||
SonicWall NSv 870 | ||
SonicWall TZ270 | ||
SonicWall TZ270W Firmware | ||
SonicWall TZ370 | ||
SonicWall TZ370W Firmware | ||
SonicWall TZ470 Firmware | ||
SonicWall TZ470W Firmware | ||
SonicWall TZ570 Firmware | ||
SonicWall TZ570P Firmware | ||
SonicWall TZ570W Firmware | ||
SonicWall TZ670 Firmware | ||
SonicWall SonicOS | <6.5.4.4-44v-21-2340 | |
SonicWall SonicOS | <6.5.4.13-105n | |
SonicWall NSA 2600 | ||
SonicWall NSA 2650 | ||
SonicWall NSA 3600 | ||
SonicWall NSA 3650 Firmware | ||
SonicWall NSA 4600 | ||
SonicWall NSA 4650 Firmware | ||
SonicWall NSA 5600 | ||
SonicWall NSA 5650 | ||
SonicWall NSA 6600 | ||
SonicWall NSA 6650 | ||
SonicWall SM9200 | ||
SonicWall SM 9250 | ||
SonicWall SuperMassive 9400 | ||
SonicWall SM 9450 | ||
SonicWall SM 9600 | ||
SonicWall SM 9650 | ||
SonicWall SOHO 250W | ||
SonicWall SOHO 250W Firmware | ||
SonicWall SOHO | ||
SonicWall TZ300 Firmware | ||
SonicWall TZ300P Firmware | ||
SonicWall TZ300W Firmware | ||
SonicWall TZ350 Firmware | ||
SonicWall TZ400W Firmware | ||
SonicWall TZ400W Firmware | ||
SonicWall TZ500W | ||
SonicWall TZ500W | ||
SonicWall TZ600 Firmware | ||
SonicWall TZ600P |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-41713 is a vulnerability in SonicOS that allows the use of a hard-coded password in the 'dynHandleBuyToolbar' demo function.
SonicWall SonicOS versions up to 7.0.1-5145 are affected by CVE-2023-41713.
CVE-2023-41713 has a severity rating of 7.5 (high).
To fix CVE-2023-41713, update your SonicOS software to version 7.0.1-5145 or higher.
You can find more information about CVE-2023-41713 on the SonicWall PSIRT website: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0012