Vulnerability Details CVE-2022-22282
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions incorrectly restricts access to a resource using HTTP connections from an unauthorized actor leading to Improper Access Control vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.0%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2022-22282
-
cpe:2.3:h:sonicwall:sma_6200:-
-
cpe:2.3:h:sonicwall:sma_6210:-
-
cpe:2.3:h:sonicwall:sma_7200:-
-
cpe:2.3:h:sonicwall:sma_7210:-
-
cpe:2.3:h:sonicwall:sma_8000v:-
-
cpe:2.3:o:sonicwall:sma_6200_firmware:12.4.0
-
cpe:2.3:o:sonicwall:sma_6200_firmware:12.4.1
-
cpe:2.3:o:sonicwall:sma_6210_firmware:12.4.0
-
cpe:2.3:o:sonicwall:sma_6210_firmware:12.4.1
-
cpe:2.3:o:sonicwall:sma_7200_firmware:12.4.0
-
cpe:2.3:o:sonicwall:sma_7200_firmware:12.4.1
-
cpe:2.3:o:sonicwall:sma_7210_firmware:12.4.0
-
cpe:2.3:o:sonicwall:sma_7210_firmware:12.4.1
-
cpe:2.3:o:sonicwall:sma_8000v_firmware:12.4.0
-
cpe:2.3:o:sonicwall:sma_8000v_firmware:12.4.1