Description


A Host Header Redirection vulnerability in SonicOS potentially allows a remote attacker to redirect firewall management users to arbitrary web domains.

Related CPE's


o

sonicwall

sonicos

7

h

sonicwall

nsa_2650

3

h

sonicwall

nsa_2700

3

h

sonicwall

nsa_3650

3

h

sonicwall

nsa_3700

3

h

sonicwall

nsa_4650

3

h

sonicwall

nsa_4700

3

h

sonicwall

nsa_5650

3

h

sonicwall

nsa_6650

3

h

sonicwall

nsa_6700

3

h

sonicwall

nsa_9250

3

h

sonicwall

nsa_9450

3

h

sonicwall

nsa_9650

3

h

sonicwall

tz270

3

h

sonicwall

tz270w

3

h

sonicwall

tz300

3

h

sonicwall

tz300p

3

h

sonicwall

tz300w

3

h

sonicwall

tz350

3

h

sonicwall

tz350w

3

h

sonicwall

tz370

3

h

sonicwall

tz370w

3

h

sonicwall

tz400

3

h

sonicwall

tz400w

3

h

sonicwall

tz470

3

h

sonicwall

tz470w

3

h

sonicwall

tz500

3

h

sonicwall

tz500w

3

h

sonicwall

tz570

2

h

sonicwall

tz570p

2

h

sonicwall

tz570w

2

h

sonicwall

tz600

2

h

sonicwall

tz600p

2

h

sonicwall

tz670

2













h

sonicwall

nssp_12400

2

h

sonicwall

nssp_12800

2



h

sonicwall

soho_250w

2




h

sonicwall

supermassive_9800

2




Weaknesses



CWE-601


CWE-601

CVSS impact metrics


CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

6.1 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information


Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-10-12T23:15:07.727

3 years ago

Last modified

2021-10-19T23:10:39.157

3 years ago