CVE-2022-1702

2022-05-1319:40:15

CWE-601

sonicwall

www.cve.org

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.3%

JSON

SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions accept a user-controlled input that specifies a link to an external site and uses that link in a redirect which leads to Open redirection vulnerability.

CNA Affected

[
  {
    "product": "SonicWall SMA1000",
    "vendor": "SonicWall",
    "versions": [
      {
        "status": "affected",
        "version": "12.4.0"
      },
      {
        "status": "affected",
        "version": "12.4.1"
      }
    ]
  }
]

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0009