From thehackernews.com
![SonicWall Firewall Appliances](https://thehackernews.com/new-images/img/b/R29vZ2xl/AVvXsEj0mRUXuwMRwVAuL4gWwtgolBK4Mt1EKsUMsJAmn-sIR4xNtONHROpxwkTL2zasbHTXmjPnLtVSnqUQFzlxMRCtt-ujZD-m4SvckLSpcNTKJina4dJf59kqTUm6qwpfxLZ7VN57Y_6HhwJytjq5k66ftTOMfgp9htPt7A-r9Jibi07vj6MnXCs7aU7Z/s728-e1000/sonicwall.jpg)
SonicWall has released security updates to contain a critical flaw across multiple firewall appliances that could be weaponized by an unauthenticated, remote attacker to execute arbitrary code and cause a denial-of-service (DoS) condition.
Tracked as CVE-2022-22274 (CVSS score: 9.4), the issue has been described as a stack-based buffer overflow in the web management interface of SonicOS that could be triggered by sending a specially crafted HTTP request, leading to remote code execution or DoS.