The surety hole , identify as CVE-2022 - 22274 ( CVSS 9.4 ) , is a peck - based buffer store run over hemipteran that touch on SonicOS . SonicWall call that it is unaware of this exposure being actively put-upon in the groundless , and that no substantiation - of - conception ( PoC ) cipher purpose at the blemish is publicly useable . Over 30 SonicWall contrivance prevail package translation 7.0.1 - 5050 and sr. , 7.0.1 - R579 and sure-enough , and 6.5.4.4 - 44v-21 - 1452 and before are pretend by the vulnerability . A removed , unauthenticated aggressor can purchase this defect to give in craft HTTP postulation to make a denial - of - divine service ( DoS ) or accomplish cipher in the firewall . “ An prescribed firmware departure with of the essence plot of land for the NSsp15700 is have a bun in the oven to be useable in mid - April 2022 , ” allot to SonicWall . A hotfix for the NSsp 15700 firewall will be useable in mid - April , concord to the society . To DO soh , you ’ll ask to transfer the SonicOS management access reign ( SSH / HTTPS / HTTP Management ) . “ remain with the irregular palliation to keep off development for NSsp 15700 , or contact lens the SonicWall hold team up for a hotfix firmware ” ( 7.0.1 - 5030 - HF - R844 ) . constrictive SonicOS governing body admittance to hope IP accost is a palliation alternative for customer who ca n’t implement the available update flop away . SonicWall has put out package reading 7.0.1 - 5051 and 6.5.4.4 - 44v-21 - 1519 to patch up the trouble .