CVE-2022-2324

HIGH

SonicWall Hosted Email Security <10.0.17.7319 - Info Disclosure

Title source: llm

Description

Improperly Implemented Security Check vulnerability in the SonicWall Hosted Email Security leads to bypass of Capture ATP security service in the appliance. This vulnerability impacts 10.0.17.7319 and earlier versions

References (1)

[Vendor Advisory] https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0014

Scores

CVSS v3 7.5

EPSS 0.0011

EPSS Percentile 28.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE

CWE-290 CWE-358

Status published

Products (1)

sonicwall/hosted_email_security < 10.0.17.7319

Published Jul 29, 2022

Tracked Since Feb 18, 2026