CVE-2023-0656

HIGH EXPLOITED

Sonicwall Sonicos < 7.0.1-5111 - Out-of-Bounds Write

Title source: rule

Description

A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.

Exploits (1)

nomisec WORKING POC 19 stars

by BishopFox · dos

https://github.com/BishopFox/CVE-2022-22274_CVE-2023-0656

View Code ZIP pw:eip

References (1)

[Vendor Advisory] https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0004

Scores

CVSS v3 7.5

EPSS 0.3149

EPSS Percentile 96.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

VulnCheck KEV 2024-09-12

CWE

CWE-121 CWE-787

Status published

Products (1)

sonicwall/sonicos < 7.0.1-5111

Published Mar 02, 2023

Tracked Since Feb 18, 2026