Sunday, January 26, 2025
HomeCVE/vulnerabilityCritical SonicWall Vulnerability Allows SQL Injection - Patch Now!

Critical SonicWall Vulnerability Allows SQL Injection – Patch Now!

Published on

SIEM as a Service

Follow Us on Google News

A critical SQL injection (SQLi) vulnerability was recently patched by the network security company SonicWall as a result of a new update. 

The company’s Analytics On-Premise and Global Management System (GMS) products are affected by this critical flaw and as a result, they must be updated.

CVE-2022-22280 has been assigned to the flaw which has been tracked. Due to the fact that the special elements used in SQL commands are not neutralized appropriately, this vulnerability allows SQL injection.

There is a strong recommendation from SonicWall PSIRT for organizations to upgrade to the appropriately patched version as soon as possible.

Flaw Profile

  • CVE: CVE-2022-22280
  • CVSS v3 9.4
  • Severity: Critical
  • Summary: Unauthenticated SQL Injection In Sonicwall GMS and Analytics
  • Advisory ID: SNWLID-2022-0007

Affected Products & Versions

Here below we have mentioned the affected products and versions below:-

  • GMS: 9.3.1-SP2-Hotfix1 and earlier versions
  • Analytics: 2.5.0.3-2520 and earlier versions

In an effort to clarify the statement, SonicWall has claimed that it is not aware of any active exploits in the wild that have been reported. In short, this vulnerability has not even been exploited as of yet and there is no proof of concept exploit available for it.

This flaw has been discovered and reported by H4lo and Catalpa of the DBappSecurity HAT lab, which affects versions 2.5.0.3-2520 and earlier.

It is strongly recommended that organizations relying on devices that are vulnerable should upgrade to the fixed version:-

  • Analytics 2.5.0.3-2520-Hotfix1 
  • GMS 9.3.1-SP2-Hotfix-2

SQL injections are a type of bug in which an attacker can modify a legitimate SQL query in order to gain access to its contents. 

Then inputs a string of specially crafted code into the form or URL query variables of a web page and performs unexpected behavior based on the input.

In the current state of things, this vulnerability doesn’t have a workaround in place. For attackers to be prevented from exploiting the vulnerability, it is essential that the necessary security updates and mitigations be applied.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity updates.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Subaru’s STARLINK Connected Car’s Vulnerability Let Attackers Gain Restricted Access

In a groundbreaking discovery on November 20, 2024, cybersecurity researchers Shubham Shah and a...

Android Kiosk Tablets Vulnerability Let Attackers Control AC & Lights

A security flaw found in Android-based kiosk tablets at luxury hotels has exposed a...

CISA Releases Six ICS Advisories Details Security Issues

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued six Industrial Control Systems (ICS)...

Juniper Routers Exploited via Magic Packet Vulnerability to Deploy Custom Backdoor

A sophisticated cyber campaign dubbed "J-magic" has been discovered targeting enterprise-grade Juniper routers with...

API Security Webinar

Free Webinar - DevSecOps Hacks

By embedding security into your CI/CD workflows, you can shift left, streamline your DevSecOps processes, and release secure applications faster—all while saving time and resources.

In this webinar, join Phani Deepak Akella ( VP of Marketing ) and Karthik Krishnamoorthy (CTO), Indusface as they explores best practices for integrating application security into your CI/CD workflows using tools like Jenkins and Jira.

Discussion points

Automate security scans as part of the CI/CD pipeline.
Get real-time, actionable insights into vulnerabilities.
Prioritize and track fixes directly in Jira, enhancing collaboration.
Reduce risks and costs by addressing vulnerabilities pre-production.

More like this

CISA Releases Six ICS Advisories Details Security Issues

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued six Industrial Control Systems (ICS)...

370+ Ivanti Connect Secure Exploited Using 0-Day Vulnerability

A major cybersecurity incident has come to light, with more than 370 Ivanti Connect...

Zero-Click Outlook RCE Vulnerability (CVE-2025-21298), PoC Released

Microsoft issued a critical patch to address CVE-2025-21298, a zero-click Remote Code Execution (RCE)...