SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions accept a user-controlled input that specifies a link to an external site and uses that link in a redirect which leads to Open redirection vulnerability.
References
Link | Resource |
---|---|
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0009 | Vendor Advisory |
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0009 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
History
21 Nov 2024, 06:41
Type | Values Removed | Values Added |
---|---|---|
References | () https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0009 - Vendor Advisory |
Information
Published : 2022-05-13 20:15
Updated : 2024-11-21 06:41
NVD link : CVE-2022-1702
Mitre link : CVE-2022-1702
CVE.ORG link : CVE-2022-1702
JSON object : View
Products Affected
sonicwall
- sma_8000v_firmware
- sma_6210
- sma_6210_firmware
- sma_7200
- sma_7210_firmware
- sma_7210
- sma_8000v
- sma_6200_firmware
- sma_6200
- sma_7200_firmware
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')