Lucene search

[email protected]CVE-2021-20046

HistoryJan 10, 2022 - 2:10 p.m.

CVE-2021-20046

2022-01-1014:10:16

CWE-787

CWE-121

[email protected]

web.nvd.nist.gov

cve-2021-20046

sonicos

buffer overflow

http

denial of service

code execution

firewall

nvd

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.6 High

AI Score

Confidence

High

6.5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

71.6%

JSON

A Stack-based buffer overflow in the SonicOS HTTP Content-Length response header allows a remote authenticated attacker to cause Denial of Service (DoS) and potentially results in code execution in the firewall. This vulnerability affected SonicOS Gen 5, Gen 6 and Gen 7 firmware versions.

Affected configurations

NVD

Node

sonicwallnsa_2650Match-

sonicwallnsa_2700Match-

sonicwallnsa_3650Match-

sonicwallnsa_3700Match-

sonicwallnsa_4650Match-

sonicwallnsa_4700Match-

sonicwallnsa_5650Match-

sonicwallnsa_6650Match-

sonicwallnsa_6700Match-

sonicwallnsa_9250Match-

sonicwallnsa_9450Match-

sonicwallnsa_9650Match-

sonicwalltz270Match-

sonicwalltz270wMatch-

sonicwalltz300Match-

sonicwalltz300pMatch-

sonicwalltz300wMatch-

sonicwalltz350Match-

sonicwalltz350wMatch-

sonicwalltz370Match-

sonicwalltz370wMatch-

sonicwalltz400Match-

sonicwalltz400wMatch-

sonicwalltz470Match-

sonicwalltz470wMatch-

sonicwalltz500Match-

sonicwalltz500wMatch-

sonicwalltz570Match-

sonicwalltz570pMatch-

sonicwalltz570wMatch-

sonicwalltz600Match-

sonicwalltz600pMatch-

sonicwalltz670Match-

AND

sonicwallsonicosRange≤7.0.1-r146

Node

sonicwallnsv_10Match-

sonicwallnsv_100Match-

sonicwallnsv_1600Match-

sonicwallnsv_200Match-

sonicwallnsv_25Match-

sonicwallnsv_270Match-

sonicwallnsv_300Match-

sonicwallnsv_400Match-

sonicwallnsv_470Match-

sonicwallnsv_50Match-

sonicwallnsv_800Match-

sonicwallnsv_870Match-

AND

sonicwallsonicosRange≤7.0.1-5023-1349

Node

sonicwallnssp_12400Match-

sonicwallnssp_12800Match-

sonicwallnssp_13700Match-

sonicwallnssp_15700Match-

AND

sonicwallsonicosRange≤7.0.1-5018-r1715

Node

sonicwallnsa_2650Match-

sonicwallnsa_2700Match-

sonicwallnsa_3650Match-

sonicwallnsa_3700Match-

sonicwallnsa_4650Match-

sonicwallnsa_4700Match-

sonicwallnsa_5650Match-

sonicwallnsa_6650Match-

sonicwallnsa_6700Match-

sonicwallnsa_9250Match-

sonicwallnsa_9450Match-

sonicwallnsa_9650Match-

sonicwallsoho_250wMatch-

sonicwallsupermassive_9200Match-

sonicwallsupermassive_9400Match-

sonicwallsupermassive_9600Match-

sonicwallsupermassive_9800Match-

sonicwalltz270Match-

sonicwalltz270wMatch-

sonicwalltz300Match-

sonicwalltz300pMatch-

sonicwalltz300wMatch-

sonicwalltz350Match-

sonicwalltz350wMatch-

sonicwalltz370Match-

sonicwalltz370wMatch-

sonicwalltz400Match-

sonicwalltz400wMatch-

sonicwalltz470Match-

sonicwalltz470wMatch-

sonicwalltz500Match-

sonicwalltz500wMatch-

sonicwalltz570Match-

sonicwalltz570pMatch-

sonicwalltz570wMatch-

sonicwalltz600Match-

sonicwalltz600pMatch-

sonicwalltz670Match-

AND

sonicwallsonicosRange≤6.5.4.8-89n

Node

sonicwallnssp_12400Match-

sonicwallnssp_12800Match-

sonicwallsupermassive_9800Match-

AND

sonicwallsonicosRange≤6.5.1.13-1n

Node

sonicwallsupermassive_e10200Match-

sonicwallsupermassive_e10400Match-

sonicwallsupermassive_e10800Match-

AND

sonicwallsonicosRange≤6.0.5.3-94o

Node

sonicwallnsa_2650Match-

sonicwallnsa_2700Match-

sonicwallnsa_3650Match-

sonicwallnsa_3700Match-

sonicwallnsa_4650Match-

sonicwallnsa_4700Match-

sonicwallnsa_5650Match-

sonicwallnsa_6650Match-

sonicwallnsa_6700Match-

sonicwallnsa_9250Match-

sonicwallnsa_9450Match-

sonicwallnsa_9650Match-

sonicwallsoho_250Match-

sonicwallsoho_250wMatch-

sonicwalltz270Match-

sonicwalltz270wMatch-

sonicwalltz300Match-

sonicwalltz300pMatch-

sonicwalltz300wMatch-

sonicwalltz350Match-

sonicwalltz350wMatch-

sonicwalltz370Match-

sonicwalltz370wMatch-

sonicwalltz400Match-

sonicwalltz400wMatch-

sonicwalltz470Match-

sonicwalltz470wMatch-

sonicwalltz500Match-

sonicwalltz500wMatch-

AND

sonicwallsonicosRange5.0.0.0–5.9.1.13

CPENameOperatorVersion
sonicwall:sonicossonicwall sonicosle7.0.1-r146

CPE	Name	Operator	Version
sonicwall:sonicos	sonicwall sonicos	le	7.0.1-r146

CNA Affected

[
  {
    "product": "SonicOS",
    "vendor": "SonicWall",
    "versions": [
      {
        "status": "affected",
        "version": "7.0.1-R146 and earlier"
      },
      {
        "status": "affected",
        "version": "7.0.1-5023-1349 and earlier"
      },
      {
        "status": "affected",
        "version": "7.0.1-5018-R1715 and earlier"
      },
      {
        "status": "affected",
        "version": "6.5.4.8-89n and earlier"
      },
      {
        "status": "affected",
        "version": "6.5.1.13-1n and earlier"
      },
      {
        "status": "affected",
        "version": "6.0.5.3-94o and earlier"
      },
      {
        "status": "affected",
        "version": "6.5.4.v_21s-1288 and earlier"
      },
      {
        "status": "affected",
        "version": "5.9.1.13 and earlier"
      }
    ]
  }
]

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0027

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.6 High

AI Score

Confidence

High

6.5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

71.6%

JSON

Related for CVE-2021-20046

prion1 cvelist1 nvd1