SonicOS post-authentication Improper Privilege Management vulnerability in the SonicOS SSL VPN Tunnel allows users to elevate their privileges inside the tunnel.
References
| Link | Resource |
|---|---|
| https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0012 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
History
No history.
Information
Published : 2023-10-17 23:15
Updated : 2023-10-19 16:43
NVD link : CVE-2023-41715
Mitre link : CVE-2023-41715
CVE.ORG link : CVE-2023-41715
JSON object : View
Products Affected
sonicwall
- nsv100
- nsv270
- nssp15700
- nsa_2600
- nsa_4600
- tz_300
- nsv870
- nsv800
- sonicos
- nsa_6650
- sm_9650
- soho_250
- tz570
- tz_500
- nsv50
- tz670
- nsa_2650
- nsa_6600
- tz370
- sm_9450
- nsv470
- nsa3700
- nsa_3650
- tz_300p
- tz470
- nsa_4650
- nsa_5650
- tz_500w
- nsv400
- tz370w
- nsa_3600
- sm_9600
- tz_300w
- nsv300
- nsv200
- sm_9400
- tz570p
- nssp10700
- soho_250w
- nsa4700
- nsv10
- tz570w
- sm_9200
- tz270w
- sohow
- tz_400w
- tz470w
- nsv1600
- nssp13700
- nsa5700
- nsa_5600
- nssp11700
- tz_400
- sm_9250
- nsv25
- tz270
- tz_350
- tz_600p
- nsa6700
- nsa2700
- tz_600
CWE
CWE-269
Improper Privilege Management
