CVE-2022-2323

2022-07-2919:15:12

CWE-77

sonicwall

www.cve.org

9.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.8%

JSON

Improper neutralization of special elements used in a user input allows an authenticated malicious user to perform remote code execution in the host system. This vulnerability impacts SonicWall Switch 1.1.1.0-2s and earlier versions

CNA Affected

[
  {
    "product": "SonicWall Switch",
    "vendor": "SonicWall",
    "versions": [
      {
        "status": "affected",
        "version": "1.1.1.0-2s and earlier"
      }
    ]
  }
]

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0013