CVE-2022-22276

Home/CVE/A vulnerability in SonicOS SNMP service resulting exposure of sensitive information to an unauthorized user.

CVE

A vulnerability in SonicOS SNMP service resulting exposure of sensitive information to an unauthorized user.

MEDIUM · CVSS 5.3 EPSS 0.00165

Monitor

No active-exploitation, high-EPSS, or public-exploit signals - routine patching cadence

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-200Exposure of Sensitive Information to an Unauthorized Actor

▤

Affected Products & Versions

sonicwall tz300p firmware< 7.0.1
sonicwall tz300w firmware< 7.0.1
sonicwall tz350 firmware< 7.0.1
sonicwall tz350w firmware< 7.0.1
sonicwall nssp 10700 firmware< 7.0.1.0
sonicwall nssp 11700 firmware< 7.0.1.0
sonicwall nssp 12400 firmware< 7.0.1.0
sonicwall nssp 12800 firmware< 7.0.1.0
Show all 49 affected productssonicwall nssp 13700 firmware< 7.0.1.0
sonicwall nssp 15700 firmware< 7.0.1.0
sonicwall tz370 firmware< 7.0.1
sonicwall tz370w firmware< 7.0.1
sonicwall tz400 firmware< 7.0.1
sonicwall nsv 10 firmware< 7.0.1.0
sonicwall nsv 100 firmware< 7.0.1.0
sonicwall nsv 1600 firmware< 7.0.1.0
sonicwall nsv 200 firmware< 7.0.1.0
sonicwall nsv 25 firmware< 7.0.1.0
sonicwall nsv 270 firmware< 7.0.1.0
sonicwall nsv 300 firmware< 7.0.1.0
sonicwall nsv 400 firmware< 7.0.1.0
sonicwall nsv 470 firmware< 7.0.1.0
sonicwall nsv 50 firmware< 7.0.1.0
sonicwall nsv 800 firmware< 7.0.1.0
sonicwall nsv 870 firmware< 7.0.1.0
sonicwall tz400w firmware< 7.0.1
sonicwall tz470 firmware< 7.0.1
sonicwall tz470w firmware< 7.0.1
sonicwall tz500 firmware< 7.0.1
sonicwall nsa 2650 firmware< 7.0.1
sonicwall nsa 2700 firmware< 7.0.1
sonicwall nsa 3650 firmware< 7.0.1
sonicwall nsa 3700 firmware< 7.0.1
sonicwall nsa 4650 firmware< 7.0.1
sonicwall nsa 4700 firmware< 7.0.1
sonicwall nsa 5650 firmware< 7.0.1
sonicwall nsa 5700 firmware< 7.0.1
sonicwall nsa 6650 firmware< 7.0.1
sonicwall nsa 6700 firmware< 7.0.1
sonicwall nsa 9250 firmware< 7.0.1
sonicwall nsa 9450 firmware< 7.0.1
sonicwall nsa 9650 firmware< 7.0.1
sonicwall tz500w firmware< 7.0.1
sonicwall tz570 firmware< 7.0.1
sonicwall tz570p firmware< 7.0.1
sonicwall tz570w firmware< 7.0.1
sonicwall tz600 firmware< 7.0.1
sonicwall tz600p firmware< 7.0.1
sonicwall tz670 firmware< 7.0.1

▣

Scoring & Timeline

5.3

MEDIUM · CVSS v3.1 · PSIRT@sonicwall.com

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD27 Apr 2022 · 05:15 PM

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

🔗

References & Sources

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0004Vendor Advisory

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin