A Stack-based buffer overflow vulnerability in the SonicOS via HTTP request allows a remote unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution in the firewall.
SonicWall PSIRT is not aware of active exploitation in the wild. No reports of a PoC have been made public and malicious use of this vulnerability has not been reported to SonicWall.
And SonicWall strongly urges organizations using impacted SonicWall firewalls listed below to follow the provided guidance.
NOTE: This vulnerability ONLY impacts the “web management” interface, the SonicOS SSLVPN interface is not impacted. CVE-2022-22274 - Unauthenticated Stack-Based Buffer Overflow Vulnerability In SonicOS
Rascals are always sociable, and the chief sign that a man has any nobility in his character is the little pleasure he takes in others company. Arthur Schopenhauer