Description:
SonicWall has released a security advisory to address an information disclosure vulnerability in SonicWall Email Security. A remote unauthenticated attacker could exploit the vulnerability by sending specially crafted requests to an affected system.
Affected Systems:
- SonicWall Email Security version 10.0.19.7431 and earlier
Impact:
Successful exploitation of the vulnerability could lead to information disclosure on the affected system.
Recommendation:
Software update for affected product is available. Administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.
More Information:
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0002
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0655
