{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-0656", "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315", "assignerShortName": "sonicwall", "dateUpdated": "2023-03-02T00:00:00", "dateReserved": "2023-02-02T00:00:00", "datePublished": "2023-03-02T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315", "shortName": "sonicwall", "dateUpdated": "2023-03-02T00:00:00"}, "descriptions": [{"lang": "en", "value": "A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash."}], "affected": [{"vendor": "SonicWall", "product": "SonicOS", "versions": [{"version": "SonicOS NSv 6.5.4.4-44v-21-1551 and earlier", "status": "affected"}, {"version": "SonicOS NSsp 7.0.1-5083 and earlier", "status": "affected"}, {"version": "SonicOS 7.0.1-5095 and earlier", "status": "affected"}]}], "references": [{"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0004"}], "problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-121: Stack-based Buffer Overflow", "cweId": "CWE-121"}]}]}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "matchCriteriaId": "D3048789-B1A5-4C58-9EA8-A0ABF8EE693E", "versionEndIncluding": "7.0.1-5111", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:nsa_2700:-:*:*:*:*:*:*:*", "matchCriteriaId": "8D8B0C7A-FD65-47CA-A625-150A90EFA7A1", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsa_3700:-:*:*:*:*:*:*:*", "matchCriteriaId": "A69E000B-5806-46FD-A233-4E2CC9DD38D2", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsa_4700:-:*:*:*:*:*:*:*", "matchCriteriaId": "8DF4A322-7CC7-4AB9-B10E-FFF34DF2182D", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsa_5700:-:*:*:*:*:*:*:*", "matchCriteriaId": "4C15FED5-C48C-47CF-9645-0563D77883C1", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsa_6700:-:*:*:*:*:*:*:*", "matchCriteriaId": "A884B1BB-F201-4C77-9F6E-B8A884DCD4C2", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nssp_10700:-:*:*:*:*:*:*:*", "matchCriteriaId": "7C3BA5A3-1160-4793-A8D6-40B9D264BCC4", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nssp_11700:-:*:*:*:*:*:*:*", "matchCriteriaId": "6739DEA3-06FF-4FEB-9931-0DB27F63B70E", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nssp_13700:-:*:*:*:*:*:*:*", "matchCriteriaId": "0250EDF9-0AEF-4711-8EF6-D447CF48BCAF", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_270:-:*:*:*:*:*:*:*", "matchCriteriaId": "F2ABC8D8-2943-4073-9568-E87961A18998", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_470:-:*:*:*:*:*:*:*", "matchCriteriaId": "9F57D527-AA3F-45E9-9BCE-6F76691066B5", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_870:-:*:*:*:*:*:*:*", "matchCriteriaId": "F5ECCCF0-A5D8-42A8-8EC1-D12B49B1124A", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:tz270:-:*:*:*:*:*:*:*", "matchCriteriaId": "70340DD4-687B-402C-85AF-C2B80D0F1600", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:tz270w:-:*:*:*:*:*:*:*", "matchCriteriaId": "52847BA2-470B-4078-A79B-52095DB9214B", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:tz370:-:*:*:*:*:*:*:*", "matchCriteriaId": "9853AE3A-B0EA-4249-AA7D-1F2051C9BF91", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:tz370w:-:*:*:*:*:*:*:*", "matchCriteriaId": "4DBDD10C-F89D-4051-BC70-67B41167FF9B", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:tz470:-:*:*:*:*:*:*:*", "matchCriteriaId": "6C23940E-2F9D-447B-A740-42035ED5D400", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:tz470w:-:*:*:*:*:*:*:*", "matchCriteriaId": "90C790AD-C40E-4527-8F83-D278282A9600", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:tz570:-:*:*:*:*:*:*:*", "matchCriteriaId": "C7DF76E0-8E3D-4E0D-A3BB-F5AE05A4C7C9", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:tz570p:-:*:*:*:*:*:*:*", "matchCriteriaId": "352DFCF9-E333-41C0-8033-91265768FD8E", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:tz570w:-:*:*:*:*:*:*:*", "matchCriteriaId": "4C882C38-9DA5-4C03-BB23-AB2B448E3307", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:tz670:-:*:*:*:*:*:*:*", "matchCriteriaId": "AEEA6065-48D3-4EC7-BD94-CBAE3D1010FF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "matchCriteriaId": "C61C96E2-0679-4555-A5D6-75E1BE44CB1F", "versionEndIncluding": "7.0.1-5083", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:nssp_15700:-:*:*:*:*:*:*:*", "matchCriteriaId": "7D6CF3CF-256C-4C04-8BDF-B16398CD0459", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "matchCriteriaId": "715F6C7A-0A62-4261-8DD1-17F34AD5F710", "versionEndIncluding": "6.5.4.4-44v-21-1551", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:nsv_10:-:*:*:*:*:*:*:*", "matchCriteriaId": "75912A50-E148-43C9-9335-BE19977F8A70", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_100:-:*:*:*:*:*:*:*", "matchCriteriaId": "12CF8746-84DF-4FB6-B5B7-AAED39E7FA6C", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_1600:-:*:*:*:*:*:*:*", "matchCriteriaId": "3ED84FC8-3E4E-4D29-B725-57AE7EEEC6DA", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_200:-:*:*:*:*:*:*:*", "matchCriteriaId": "AC0B21B1-ABA5-49E2-9B43-E85B9B447F45", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_25:-:*:*:*:*:*:*:*", "matchCriteriaId": "731B4849-2F0B-4625-B768-2287964ECDAF", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_300:-:*:*:*:*:*:*:*", "matchCriteriaId": "0BC92834-A624-49D8-BF14-9F545C63EB0B", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_400:-:*:*:*:*:*:*:*", "matchCriteriaId": "18066544-CD00-41A5-9392-6023020853D4", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_50:-:*:*:*:*:*:*:*", "matchCriteriaId": "6A644965-B1B8-4581-BCAC-8D6BCC961A03", "vulnerable": false}, {"criteria": "cpe:2.3:h:sonicwall:nsv_800:-:*:*:*:*:*:*:*", "matchCriteriaId": "30061761-D324-43DD-B43D-F2DFEF987364", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash."}], "id": "CVE-2023-0656", "lastModified": "2023-03-10T21:04:31.397", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-03-02T22:15:09.487", "references": [{"source": "PSIRT@sonicwall.com", "tags": ["Vendor Advisory"], "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0004"}], "sourceIdentifier": "PSIRT@sonicwall.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-121"}], "source": "PSIRT@sonicwall.com", "type": "Secondary"}]}

{}