CVE-2022-22282

Name of the Vulnerable Software and Affected Versions SonicWall SMA1000 series firmware versions prior to 12.4.1-02965

Description The issue is related to insufficient access control in the firmware of SonicWall SMA 1000 series firewalls. This can allow a remote attacker to gain unauthorized access to limited functions. The vulnerability is caused by the firmware incorrectly restricting access to a resource using HTTP connections from an unauthorized actor, leading to improper access control.

Recommendations For SonicWall SMA1000 series firmware versions prior to 12.4.1-02965, update to a version that correctly restricts access to resources using HTTP connections to prevent improper access control.