Open redirect

2022-05-1320:15:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.3%

JSON

SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions accept a user-controlled input that specifies a link to an external site and uses that link in a redirect which leads to Open redirection vulnerability.

CPENameOperatorVersion
sma_6200_firmwareeq12.4.0
sma_6200_firmwareeq12.4.1
sma_6210_firmwareeq12.4.0
sma_6210_firmwareeq12.4.1
sma_7200_firmwareeq12.4.0
sma_7200_firmwareeq12.4.1
sma_7210_firmwareeq12.4.0
sma_7210_firmwareeq12.4.1
sma_8000v_firmwareeq12.4.0
sma_8000v_firmwareeq12.4.1

Name	Operator	Version
sma_6200_firmware	eq	12.4.0
sma_6200_firmware	eq	12.4.1
sma_6210_firmware	eq	12.4.0
sma_6210_firmware	eq	12.4.1
sma_7200_firmware	eq	12.4.0
sma_7200_firmware	eq	12.4.1
sma_7210_firmware	eq	12.4.0
sma_7210_firmware	eq	12.4.1
sma_8000v_firmware	eq	12.4.0
sma_8000v_firmware	eq	12.4.1

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0009