Description
A Host Header Redirection vulnerability in SonicOS potentially allows a remote attacker to redirect firewall management users to arbitrary web domains.
Related CPE's
o
sonicwall
sonicos
h
sonicwall
nsa_2650
h
sonicwall
nsa_2700
h
sonicwall
nsa_3650
h
sonicwall
nsa_3700
h
sonicwall
nsa_4650
h
sonicwall
nsa_4700
h
sonicwall
nsa_5650
h
sonicwall
nsa_6650
h
sonicwall
nsa_6700
h
sonicwall
nsa_9250
h
sonicwall
nsa_9450
h
sonicwall
nsa_9650
h
sonicwall
tz270
h
sonicwall
tz270w
h
sonicwall
tz300
h
sonicwall
tz300p
h
sonicwall
tz300w
h
sonicwall
tz350
h
sonicwall
tz350w
h
sonicwall
tz370
h
sonicwall
tz370w
h
sonicwall
tz400
h
sonicwall
tz400w
h
sonicwall
tz470
h
sonicwall
tz470w
h
sonicwall
tz500
h
sonicwall
tz500w
h
sonicwall
tz570
h
sonicwall
tz570p
h
sonicwall
tz570w
h
sonicwall
tz600
h
sonicwall
tz600p
h
sonicwall
tz670
h
sonicwall
nssp_12400
h
sonicwall
nssp_12800
h
sonicwall
soho_250w
h
sonicwall
supermassive_9800
References
http://packetstormsecurity.com/files/164502/Sonicwall-SonicOS-7.0-Host-Header-Injection.html
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
6.1 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2021-10-12T23:15:07.727
3 years agoLast modified
2021-10-19T23:10:39.157
3 years ago