Vulnerabilities > Sonicwall > Tz400 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-04-15 CVE-2022-47522 Authentication Bypass by Spoofing vulnerability in multiple products
The IEEE 802.11 specifications through 802.11ax allow physically proximate attackers to intercept (possibly cleartext) target-destined frames by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to the access point (such as authentication frames or re-association frames) to remove the target's original security context.
high complexity
ieee sonicwall CWE-290
7.5
2022-04-27 CVE-2022-22278 Allocation of Resources Without Limits or Throttling vulnerability in Sonicwall products
A vulnerability in SonicOS CFS (Content filtering service) returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service (DoS) attack
network
low complexity
sonicwall CWE-770
7.5