The protection hollow , identify as CVE-2022 - 22274 ( CVSS 9.4 ) , is a mountain - based polisher spill over microbe that affect SonicOS . SonicWall has eject package version 7.0.1 - 5051 and 6.5.4.4 - 44v-21 - 1519 to maculation the trouble . set SonicOS governing admission to hope IP plow is a extenuation choice for client who ca n’t follow out the useable update right aside . “ An prescribed microcode unloose with all-important spell for the NSsp15700 is require to be available in mid - April 2022 , ” fit in to SonicWall . A hotfix for the NSsp 15700 firewall will be usable in mid - April , accord to the company . “ cover with the irregular moderation to obviate victimisation for NSsp 15700 , or meet the SonicWall sustain team for a hotfix firmware ” ( 7.0.1 - 5030 - HF - R844 ) . To arrange and so , you ’ll demand to convert the SonicOS direction access find ( SSH / HTTPS / HTTP Management ) . Over 30 SonicWall contraption guide computer software translation 7.0.1 - 5050 and older , 7.0.1 - R579 and elder , and 6.5.4.4 - 44v-21 - 1452 and sooner are affect by the vulnerability . A remote , unauthenticated assailant can purchase this defect to render craft HTTP postulation to create a self-renunciation - of - Service ( DoS ) or action code in the firewall . SonicWall claim that it is unaware of this vulnerability being actively overwork in the wild , and that no test copy - of - conception ( PoC ) code point at the flaw is publicly usable .