"-Synchronized-Data."

2025-07-29 05:56:59 +00:00 · 2024-08-23 07:00:32 +00:00 · 2024-08-23 07:00:32 +00:00 · 46a4d16d5b
commit 46a4d16d5b
parent 9aa34c861d
1 changed files with 65 additions and 4 deletions
--- a/2024/40xxx/CVE-2024-40766.json
+++ b/2024/40xxx/CVE-2024-40766.json
@ -1,18 +1,79 @@
 {
+    "data_version": "4.0",
    "data_type": "CVE",
    "data_format": "MITRE",
-    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2024-40766",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "PSIRT@sonicwall.com",
+        "STATE": "PUBLIC"
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash. This issue affects SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 devices running SonicOS 7.0.1-5035 and older versions."
            }
        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-284 Improper Access Control",
+                        "cweId": "CWE-284"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "SonicWall",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "SonicOS",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_affected": "=",
+                                            "version_value": "5.9.2.14-12o and older versions"
+                                        },
+                                        {
+                                            "version_affected": "=",
+                                            "version_value": "6.5.4.14-109n and older versions"
+                                        },
+                                        {
+                                            "version_affected": "=",
+                                            "version_value": "7.0.1-5035 and older versions"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0015",
+                "refsource": "MISC",
+                "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0015"
+            }
+        ]
+    },
+    "generator": {
+        "engine": "Vulnogram 0.2.0"
+    },
+    "source": {
+        "advisory": "SNWLID-2024-0015",
+        "discovery": "INTERNAL"
    }
 }