CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

sonicwall

tz570_firmware

4 known vulnerabilities · sorted by CVSS score

CVE-2022-47522

HIGH7.5

The IEEE 802.11 specifications through 802.11ax allow physically proximate attackers to intercept (possibly cleartext) target-destined frames by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to the access point (such as authentication frames or re-association frames) to remove the target's original security context. This behavior occurs because the specifications do not require an access point to purge its transmit queue before removing a client's pairwise encryption key.

ieee / ieee_802.11+29

Adjacent

Published Apr 15, 2023

CVE-2022-22278

HIGH7.5

A vulnerability in SonicOS CFS (Content filtering service) returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service (DoS) attack

sonicwall / tz300p_firmware+48

Network

Published Apr 27, 2022

CVE-2022-22276

MEDIUM5.3

A vulnerability in SonicOS SNMP service resulting exposure of sensitive information to an unauthorized user.

sonicwall / tz300p_firmware+48

Network

Published Apr 27, 2022

CVE-2022-22277

MEDIUM5.3

A vulnerability in SonicOS SNMP service resulting exposure of Wireless Access Point sensitive information in cleartext.

sonicwall / tz300p_firmware+79

Network

Published Apr 27, 2022