CVE-2022-22275
HIGHSonicOS 7.0.0.0-7.0.1-5030-r2007 - Denial of Service via TCP Handshake Bypass
Title source: llmDescription
Improper Restriction of TCP Communication Channel in HTTP/S inbound traffic from WAN to DMZ bypassing security policy until TCP handshake potentially resulting in Denial of Service (DoS) attack if a target host is vulnerable.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0004
Scores
CVSS v3
7.5
EPSS
0.0026
EPSS Percentile
49.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-400
Status
published
Products (1)
sonicwall/sonicos
7.0.0.0 - 7.0.1-5030-r2007
Published
Apr 27, 2022
Tracked Since
Feb 18, 2026