Vulnerability Details CVE-2024-22394
An improper authentication vulnerability has been identified in SonicWall SonicOS SSL-VPN feature, which in specific conditions could allow a remote attacker to bypass authentication.
This issue affects only firmware version SonicOS 7.1.1-7040.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.9%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2024-22394
-
cpe:2.3:h:sonicwall:nsa_2700:-
-
cpe:2.3:h:sonicwall:nsa_3700:-
-
cpe:2.3:h:sonicwall:nsa_4700:-
-
cpe:2.3:h:sonicwall:nsa_5700:-
-
cpe:2.3:h:sonicwall:nsa_6700:-
-
cpe:2.3:h:sonicwall:nssp_10700:-
-
cpe:2.3:h:sonicwall:nssp_11700:-
-
cpe:2.3:h:sonicwall:nssp_13700:-
-
cpe:2.3:h:sonicwall:nsv_270:-
-
cpe:2.3:h:sonicwall:nsv_470:-
-
cpe:2.3:h:sonicwall:nsv_870:-
-
cpe:2.3:h:sonicwall:t2270:-
-
cpe:2.3:h:sonicwall:tz270w:-
-
cpe:2.3:h:sonicwall:tz370:-
-
cpe:2.3:h:sonicwall:tz370w:-
-
cpe:2.3:h:sonicwall:tz470:-
-
cpe:2.3:h:sonicwall:tz470w:-
-
cpe:2.3:h:sonicwall:tz570:-
-
cpe:2.3:h:sonicwall:tz570p:-
-
cpe:2.3:h:sonicwall:tz570w:-
-
cpe:2.3:h:sonicwall:tz670:-
-
cpe:2.3:o:sonicwall:sonicos:7.1.1-7040