CVE-2023-0656

HIGH EXPLOITED

SonicOS < 7.0.1-5111 - Unauthenticated Denial of Service via Stack-based Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2023-0656 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including BishopFox.

AI-analyzed exploit summary This repository contains a proof-of-concept script for CVE-2022-22274 and CVE-2023-0656, which are stack-based buffer overflow vulnerabilities in SonicWall NGFW. The script tests for vulnerability and can trigger a denial-of-service (DoS) by sending maliciously crafted HTTP requests with long URI paths.

Description

A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.

Exploits (1)

nomisec WORKING POC 19 stars
by BishopFox · dos
https://github.com/BishopFox/CVE-2022-22274_CVE-2023-0656

This repository contains a proof-of-concept script for CVE-2022-22274 and CVE-2023-0656, which are stack-based buffer overflow vulnerabilities in SonicWall NGFW. The script tests for vulnerability and can trigger a denial-of-service (DoS) by sending maliciously crafted HTTP requests with long URI paths.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: SonicWall NGFW (SonicOS)
No auth needed
Prerequisites: Network access to the SonicWall NGFW web management interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 7.5
EPSS 0.4132
EPSS Percentile 98.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

VulnCheck KEV 2024-09-12
CWE
CWE-121 CWE-787
Status published
Products (1)
sonicwall/sonicos < 7.0.1-5111
Published Mar 02, 2023
Tracked Since Feb 18, 2026