Description
A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker to crash the firewall, potentially leading to a Denial-of-Service (DoS) condition.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- SonicWall / SonicOS7.1.1-7040 – 7.1.3-7015
- SonicWall / SonicOS8.0.0-8037 and earlier versions – 8.0.0-8037 and earlier versions