CVE-2022-22276

A vulnerability in SonicOS SNMP service resulting exposure of sensitive information to an unauthorized user.

CVSS v3.0 5.3 MEDIUM
CVSS v2.0 5.0 MEDIUM

5.3^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0004	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:sonicwall:tz300p_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz300p:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:sonicwall:tz300w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz300w:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:sonicwall:tz350_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz350:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:sonicwall:tz350w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz350w:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:sonicwall:nssp_10700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_10700:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:sonicwall:nssp_11700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_11700:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:sonicwall:nssp_12400_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_12400:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:sonicwall:nssp_12800_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_12800:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:sonicwall:nssp_13700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_13700:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:sonicwall:nssp_15700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nssp_15700:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:sonicwall:tz370_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz370:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:sonicwall:tz370w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz370w:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:sonicwall:tz400_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz400:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:sonicwall:nsv_10_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_10:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:sonicwall:nsv_100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_100:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:sonicwall:nsv_1600_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_1600:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:sonicwall:nsv_200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_200:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:sonicwall:nsv_25_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_25:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:sonicwall:nsv_270_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_270:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:sonicwall:nsv_300_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_300:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:sonicwall:nsv_400_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_400:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:sonicwall:nsv_470_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_470:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:sonicwall:nsv_50_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_50:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:sonicwall:nsv_800_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_800:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:sonicwall:nsv_870_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsv_870:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:sonicwall:tz400w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz400w:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:sonicwall:tz470_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz470:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:sonicwall:tz470w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz470w:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:sonicwall:tz500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz500:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:sonicwall:nsa_2650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_2650:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:sonicwall:nsa_2700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_2700:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:sonicwall:nsa_3650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_3650:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:sonicwall:nsa_3700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_3700:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:sonicwall:nsa_4650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_4650:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:sonicwall:nsa_4700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_4700:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:sonicwall:nsa_5650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_5650:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:sonicwall:nsa_5700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_5700:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:sonicwall:nsa_6650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_6650:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:sonicwall:nsa_6700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_6700:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:sonicwall:nsa_9250_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_9250:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND

cpe:2.3:o:sonicwall:nsa_9450_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_9450:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND

cpe:2.3:o:sonicwall:nsa_9650_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:nsa_9650:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND

cpe:2.3:o:sonicwall:tz500w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz500w:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND

cpe:2.3:o:sonicwall:tz570_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz570:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND

cpe:2.3:o:sonicwall:tz570p_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz570p:-:*:*:*:*:*:*:*

Configuration 46 (hide)

AND

cpe:2.3:o:sonicwall:tz570w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz570w:-:*:*:*:*:*:*:*

Configuration 47 (hide)

AND

cpe:2.3:o:sonicwall:tz600_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz600:-:*:*:*:*:*:*:*

Configuration 48 (hide)

AND

cpe:2.3:o:sonicwall:tz600p_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz600p:-:*:*:*:*:*:*:*

Configuration 49 (hide)

AND

cpe:2.3:o:sonicwall:tz670_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:tz670:-:*:*:*:*:*:*:*

Information

Published : 2022-04-27 10:15

Updated : 2022-05-06 10:37

NVD link : CVE-2022-22276

Mitre link : CVE-2022-22276

JSON object : View

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Products Affected

sonicwall

nsa_6650_firmware
nsv_870_firmware
tz350
tz670
nssp_15700_firmware
nsv_400_firmware
tz350_firmware
tz400w
nsv_270_firmware
tz570_firmware
nsa_6700_firmware
tz370_firmware
nssp_13700
nsv_800_firmware
nsa_2650_firmware
tz570p
nsv_1600
nsv_1600_firmware
nssp_12800_firmware
nsv_300_firmware
nsa_9650_firmware
nsa_2650
tz400
tz600_firmware
nssp_10700_firmware
tz370w_firmware
tz470
nsa_6700
nssp_13700_firmware
tz500w
nsa_5650
tz500
tz570
nssp_11700
tz500w_firmware
nsa_5650_firmware
nsa_4700_firmware
nssp_15700
nsv_200
nsa_9650
nssp_11700_firmware
nsv_400
nsa_5700
nssp_10700
tz470w_firmware
tz570p_firmware
tz470w
nsv_800
nsv_50_firmware
nsv_25_firmware
nsv_10_firmware
nsv_100_firmware
nsv_50
nsv_470_firmware
nsa_6650
nsa_4700
tz370w
tz370
nsv_470
nsa_5700_firmware
nsa_4650_firmware
nssp_12400_firmware
nsv_270
tz300p
nsa_3650_firmware
nsa_3650
tz600
nsa_3700_firmware
nsv_300
nsa_4650
nsa_9250_firmware
nsa_9450_firmware
tz300w_firmware
nsa_2700
tz570w
nsv_10
nsa_9250
tz350w_firmware
tz600p_firmware
tz500_firmware
tz670_firmware
nsv_200_firmware
nsa_3700
tz570w_firmware
nsa_9450
tz350w
tz400_firmware
tz400w_firmware
tz600p
nsv_870
tz300p_firmware
nsv_25
nsv_100
nssp_12800
nsa_2700_firmware
nssp_12400
tz300w
tz470_firmware

5.3 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2022-22276

5.3^/10

5.0^/10

Attach tags to `CVE-2022-22276`