Vulnerability Details CVE-2022-1703
Improper neutralization of special elements in the SonicWall SSL-VPN SMA100 series management interface allows a remote authenticated attacker to inject OS Commands which potentially leads to remote command execution vulnerability or denial of service (DoS) attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.04
EPSS Ranking 87.9%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 9.0
References
Products affected by CVE-2022-1703
-
cpe:2.3:h:sonicwall:sma_210:-
-
cpe:2.3:h:sonicwall:sma_410:-
-
cpe:2.3:h:sonicwall:sma_500v:-
-
cpe:2.3:o:sonicwall:sma_210_firmware:-
-
cpe:2.3:o:sonicwall:sma_210_firmware:10.2.0.0
-
cpe:2.3:o:sonicwall:sma_210_firmware:10.2.0.7-34sv
-
cpe:2.3:o:sonicwall:sma_210_firmware:10.2.0.8-37sv
-
cpe:2.3:o:sonicwall:sma_210_firmware:10.2.0.9-41sv
-
cpe:2.3:o:sonicwall:sma_210_firmware:10.2.1.0
-
cpe:2.3:o:sonicwall:sma_210_firmware:10.2.1.0-17sv
-
cpe:2.3:o:sonicwall:sma_210_firmware:10.2.1.1-19sv
-
cpe:2.3:o:sonicwall:sma_210_firmware:10.2.1.2-24sv
-
cpe:2.3:o:sonicwall:sma_210_firmware:10.2.1.4-31sv
-
cpe:2.3:o:sonicwall:sma_210_firmware:8.0.0.0
-
cpe:2.3:o:sonicwall:sma_210_firmware:9.0.0.10
-
cpe:2.3:o:sonicwall:sma_210_firmware:9.0.0.10-28sv
-
cpe:2.3:o:sonicwall:sma_210_firmware:9.0.0.11-31sv
-
cpe:2.3:o:sonicwall:sma_410_firmware:-
-
cpe:2.3:o:sonicwall:sma_410_firmware:10.2.0.0
-
cpe:2.3:o:sonicwall:sma_410_firmware:10.2.0.7-34sv
-
cpe:2.3:o:sonicwall:sma_410_firmware:10.2.0.8-37sv
-
cpe:2.3:o:sonicwall:sma_410_firmware:10.2.0.9-41sv
-
cpe:2.3:o:sonicwall:sma_410_firmware:10.2.1.0
-
cpe:2.3:o:sonicwall:sma_410_firmware:10.2.1.0-17sv
-
cpe:2.3:o:sonicwall:sma_410_firmware:10.2.1.1-19sv
-
cpe:2.3:o:sonicwall:sma_410_firmware:10.2.1.2-24sv
-
cpe:2.3:o:sonicwall:sma_410_firmware:10.2.1.4-31sv
-
cpe:2.3:o:sonicwall:sma_410_firmware:8.0.0.0
-
cpe:2.3:o:sonicwall:sma_410_firmware:9.0.0.10
-
cpe:2.3:o:sonicwall:sma_410_firmware:9.0.0.10-28sv
-
cpe:2.3:o:sonicwall:sma_410_firmware:9.0.0.11-31sv
-
cpe:2.3:o:sonicwall:sma_500v_firmware:-
-
cpe:2.3:o:sonicwall:sma_500v_firmware:10.2.0.8-37sv
-
cpe:2.3:o:sonicwall:sma_500v_firmware:10.2.0.9-41sv
-
cpe:2.3:o:sonicwall:sma_500v_firmware:10.2.1.1-19sv
-
cpe:2.3:o:sonicwall:sma_500v_firmware:10.2.1.2-24sv
-
cpe:2.3:o:sonicwall:sma_500v_firmware:10.2.1.4-31sv
-
cpe:2.3:o:sonicwall:sma_500v_firmware:8.0.0.0
-
cpe:2.3:o:sonicwall:sma_500v_firmware:9.0.0.10
-
cpe:2.3:o:sonicwall:sma_500v_firmware:9.0.0.10-28sv
-
cpe:2.3:o:sonicwall:sma_500v_firmware:9.0.0.11-31sv
-
cpe:2.3:o:sonicwall:sma_500v_firmware:9.0.0.9-26sv