CVE-2022-22278 - Vulnerability Details

A vulnerability in SonicOS CFS (Content filtering service) returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service (DoS) attack

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00261.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

SonicWall

SonicOS

affected

Version	Status	Constraints
`SonicOS Gen 7 TZ-Series 7.0.1-5030-R2007 and earlier versions.`	affected	—
`SonicOS Gen 7 NSa-Series 7.0.1-5030-R2007 and earlier versions.`	affected	—
`SonicOS Gen 7 NSv-Series 7.0.1.0-5030-1391 and earlier versions.`	affected	—
`SonicOS Gen 7 NSsp-Series 7.0.1-5030-R780 and earlier versions.`	affected	—

Configuration 1 [-]

AND

cpe:2.3:o:sonicwall:tz300p_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz300p:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:sonicwall:tz300w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz300w:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:sonicwall:tz350_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz350:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:sonicwall:tz350w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz350w:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:sonicwall:nssp_10700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_10700:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:sonicwall:nssp_11700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_11700:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:sonicwall:nssp_12400_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_12400:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:sonicwall:nssp_12800_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_12800:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:sonicwall:nssp_13700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_13700:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:sonicwall:nssp_15700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_15700:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:sonicwall:tz370_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz370:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:sonicwall:tz370w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz370w:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:sonicwall:tz400_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz400:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:sonicwall:nsv_10_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_10:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:sonicwall:nsv_100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_100:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:sonicwall:nsv_1600_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_1600:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:sonicwall:nsv_200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_200:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:sonicwall:nsv_25_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_25:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:sonicwall:nsv_270_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_270:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:sonicwall:nsv_300_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_300:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:sonicwall:nsv_400_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_400:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:sonicwall:nsv_470_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_470:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:sonicwall:nsv_50_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_50:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:sonicwall:nsv_800_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_800:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:sonicwall:nsv_870_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_870:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:sonicwall:tz400w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz400w:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:sonicwall:tz470_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz470:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:sonicwall:tz470w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz470w:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:sonicwall:tz500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz500:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:sonicwall:nsa_2650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_2650:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:sonicwall:nsa_2700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_2700:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:sonicwall:nsa_3650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_3650:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:sonicwall:nsa_3700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_3700:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:sonicwall:nsa_4650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_4650:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:sonicwall:nsa_4700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_4700:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:sonicwall:nsa_5650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_5650:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:sonicwall:nsa_5700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_5700:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:sonicwall:nsa_6650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_6650:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:sonicwall:nsa_6700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_6700:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:sonicwall:nsa_9250_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_9250:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:sonicwall:nsa_9450_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_9450:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:sonicwall:nsa_9650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_9650:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:sonicwall:tz500w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz500w:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:sonicwall:tz570_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz570:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:sonicwall:tz570p_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz570p:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:sonicwall:tz570w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz570w:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:sonicwall:tz600_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz600:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:sonicwall:tz600p_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz600p:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:sonicwall:tz670_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz670:-:*:*:*:*:*:*:*

No data.

Project Subscriptions

Vendors	Products
Sonicwall Subscribe	Nsa 2650 Subscribe Nsa 2650 Firmware Subscribe Nsa 2700 Subscribe Nsa 2700 Firmware Subscribe Nsa 3650 Subscribe Nsa 3650 Firmware Subscribe Nsa 3700 Subscribe Nsa 3700 Firmware Subscribe Nsa 4650 Subscribe Nsa 4650 Firmware Subscribe Nsa 4700 Subscribe Nsa 4700 Firmware Subscribe Nsa 5650 Subscribe Nsa 5650 Firmware Subscribe Nsa 5700 Subscribe Nsa 5700 Firmware Subscribe Nsa 6650 Subscribe Nsa 6650 Firmware Subscribe Nsa 6700 Subscribe Nsa 6700 Firmware Subscribe Nsa 9250 Subscribe Nsa 9250 Firmware Subscribe Nsa 9450 Subscribe Nsa 9450 Firmware Subscribe Nsa 9650 Subscribe Nsa 9650 Firmware Subscribe Nssp 10700 Subscribe Nssp 10700 Firmware Subscribe Nssp 11700 Subscribe Nssp 11700 Firmware Subscribe Nssp 12400 Subscribe Nssp 12400 Firmware Subscribe Nssp 12800 Subscribe Nssp 12800 Firmware Subscribe Nssp 13700 Subscribe Nssp 13700 Firmware Subscribe Nssp 15700 Subscribe Nssp 15700 Firmware Subscribe Nsv 10 Subscribe Nsv 100 Subscribe Nsv 100 Firmware Subscribe Nsv 10 Firmware Subscribe Nsv 1600 Subscribe Nsv 1600 Firmware Subscribe Nsv 200 Subscribe Nsv 200 Firmware Subscribe Nsv 25 Subscribe Nsv 25 Firmware Subscribe Nsv 270 Subscribe Nsv 270 Firmware Subscribe Nsv 300 Subscribe Nsv 300 Firmware Subscribe Nsv 400 Subscribe Nsv 400 Firmware Subscribe Nsv 470 Subscribe Nsv 470 Firmware Subscribe Nsv 50 Subscribe Nsv 50 Firmware Subscribe Nsv 800 Subscribe Nsv 800 Firmware Subscribe Nsv 870 Subscribe Nsv 870 Firmware Subscribe Tz300p Subscribe Tz300p Firmware Subscribe Tz300w Subscribe Tz300w Firmware Subscribe Tz350 Subscribe Tz350 Firmware Subscribe Tz350w Subscribe Tz350w Firmware Subscribe Tz370 Subscribe Tz370 Firmware Subscribe Tz370w Subscribe Tz370w Firmware Subscribe Tz400 Subscribe Tz400 Firmware Subscribe Tz400w Subscribe Tz400w Firmware Subscribe Tz470 Subscribe Tz470 Firmware Subscribe Tz470w Subscribe Tz470w Firmware Subscribe Tz500 Subscribe Tz500 Firmware Subscribe Tz500w Subscribe Tz500w Firmware Subscribe Tz570 Subscribe Tz570 Firmware Subscribe Tz570p Subscribe Tz570p Firmware Subscribe Tz570w Subscribe Tz570w Firmware Subscribe Tz600 Subscribe Tz600 Firmware Subscribe Tz600p Subscribe Tz600p Firmware Subscribe Tz670 Subscribe Tz670 Firmware Subscribe

Advisories

Source	ID	Title
EUVD	EUVD-2022-27425	A vulnerability in SonicOS CFS (Content filtering service) returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service (DoS) attack

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0004

History

No history.

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: sonicwall

Published: 2022-04-27T16:25:18

Updated: 2024-08-03T03:07:50.277Z

Reserved: 2021-12-29T00:00:00

Link: CVE-2022-22278

Vulnrichment

No data.

NVD

Status : Modified

Published: 2022-04-27T17:15:07.453

Modified: 2024-11-21T06:46:32.857

Link: CVE-2022-22278

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-770

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object