cvelistv5 - CVE-2015-7770

CVE-2015-7770 (GCVE-0-2015-7770)

Vulnerability from cvelistv5

Published

2015-11-06 11:00

Modified

2024-08-06 07:59

Severity ?

CWE

Summary

Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet.

References

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

CVE-2015-7770

Vulnerability from jvndb

Published

2015-11-06 12:30

Modified

2015-11-09 10:47

Severity ?

() - -

Summary

SonicWall TotalSecure TZ 100 Series vulnerable to denial-of-service (DoS)

Details

SonicWall TotalSecure TZ 100 Series is a firewall product provided by Dell Inc. SonicWall TotalSecure TZ 100 Series contains a denial-of-service (DoS) vulnerability. FFRI,Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.

References

Type

URL

	JVN	https://jvn.jp/en/jp/JVN90135579/index.html
	CVE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7770
	NVD	https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7770
	Improper Input Validation(CWE-20)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html

Impacted products

Vendor

Product

Dell

SonicWall TotalSecure TZ 100 Series firmware

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000176.html",
  "dc:date": "2015-11-09T10:47+09:00",
  "dcterms:issued": "2015-11-06T12:30+09:00",
  "dcterms:modified": "2015-11-09T10:47+09:00",
  "description": "SonicWall TotalSecure TZ 100 Series is a firewall product provided by Dell Inc. SonicWall TotalSecure TZ 100 Series contains a denial-of-service (DoS) vulnerability.\r\n\r\nFFRI,Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000176.html",
  "sec:cpe": {
    "#text": "cpe:/o:dell:sonicwall_totalsecure_tz_100_firmware",
    "@product": "SonicWall TotalSecure TZ 100 Series firmware",
    "@vendor": "Dell",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "5.0",
    "@severity": "Medium",
    "@type": "Base",
    "@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2015-000176",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/jp/JVN90135579/index.html",
      "@id": "JVN#90135579",
      "@source": "JVN"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7770",
      "@id": "CVE-2015-7770",
      "@source": "CVE"
    },
    {
      "#text": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7770",
      "@id": "CVE-2015-7770",
      "@source": "NVD"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-20",
      "@title": "Improper Input Validation(CWE-20)"
    }
  ],
  "title": "SonicWall TotalSecure TZ 100 Series vulnerable to denial-of-service (DoS)"
}

fkie_cve-2015-7770

Vulnerability from fkie_nvd

Published

2015-11-06 11:59

Modified

2025-04-12 10:46

Severity ?

Summary

Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet.

References

URL	Tags
vultures@jpcert.or.jp	http://jvn.jp/en/jp/JVN90135579/index.html	Vendor Advisory
vultures@jpcert.or.jp	http://jvndb.jvn.jp/jvndb/JVNDB-2015-000176	Vendor Advisory
vultures@jpcert.or.jp	http://www.securitytracker.com/id/1034092
af854a3a-2127-422b-91ae-364da2661108	http://jvn.jp/en/jp/JVN90135579/index.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://jvndb.jvn.jp/jvndb/JVNDB-2015-000176	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1034092

Impacted products

	Vendor	Product	Version
	dell	sonicwall_totalsecure_tz_100_firmware	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:dell:sonicwall_totalsecure_tz_100_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "38AD68D6-1FD2-4B4C-9404-118C6323DB01",
              "versionEndIncluding": "5.9.1.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet."
    },
    {
      "lang": "es",
      "value": "La configuraci\u00f3n por defecto de sshd_config en Cisco Mobility Services Engine (MSE) hasta la versi\u00f3n 8.0.120.7 permite inicios de sesi\u00f3n mediante la cuenta oracle, lo que hace que sea m\u00e1s f\u00e1cil para atacantes remotos obtener acceso mediante la introducci\u00f3n de la contrase\u00f1a embebida de esta cuenta en una sesi\u00f3n SSH, tambi\u00e9n conocido como Bug ID CSCuv40501."
    }
  ],
  "id": "CVE-2015-7770",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2015-11-06T11:59:05.807",
  "references": [
    {
      "source": "vultures@jpcert.or.jp",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://jvn.jp/en/jp/JVN90135579/index.html"
    },
    {
      "source": "vultures@jpcert.or.jp",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2015-000176"
    },
    {
      "source": "vultures@jpcert.or.jp",
      "url": "http://www.securitytracker.com/id/1034092"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://jvn.jp/en/jp/JVN90135579/index.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2015-000176"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1034092"
    }
  ],
  "sourceIdentifier": "vultures@jpcert.or.jp",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2015-7770

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet.

Aliases

CVE-2015-7770

Aliases

CVE-2015-7770

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2015-7770",
    "description": "Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet.",
    "id": "GSD-2015-7770"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2015-7770"
      ],
      "details": "Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet.",
      "id": "GSD-2015-7770",
      "modified": "2023-12-13T01:20:01.351861Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "vultures@jpcert.or.jp",
        "ID": "CVE-2015-7770",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "JVN#90135579",
            "refsource": "JVN",
            "url": "http://jvn.jp/en/jp/JVN90135579/index.html"
          },
          {
            "name": "JVNDB-2015-000176",
            "refsource": "JVNDB",
            "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2015-000176"
          },
          {
            "name": "1034092",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1034092"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:dell:sonicwall_totalsecure_tz_100_firmware:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "5.9.1.0",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "vultures@jpcert.or.jp",
          "ID": "CVE-2015-7770"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "JVN#90135579",
              "refsource": "JVN",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://jvn.jp/en/jp/JVN90135579/index.html"
            },
            {
              "name": "JVNDB-2015-000176",
              "refsource": "JVNDB",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2015-000176"
            },
            {
              "name": "1034092",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id/1034092"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2016-12-07T18:25Z",
      "publishedDate": "2015-11-06T11:59Z"
    }
  }
}

ghsa-49w8-qx9g-ww3r

Vulnerability from github

Published

2022-05-17 03:25

Modified

2022-05-17 03:25

Details

Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2015-7770"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2015-11-06T11:59:00Z",
    "severity": "MODERATE"
  },
  "details": "Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet.",
  "id": "GHSA-49w8-qx9g-ww3r",
  "modified": "2022-05-17T03:25:30Z",
  "published": "2022-05-17T03:25:30Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7770"
    },
    {
      "type": "WEB",
      "url": "http://jvn.jp/en/jp/JVN90135579/index.html"
    },
    {
      "type": "WEB",
      "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2015-000176"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1034092"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

cnvd-2015-07467

Vulnerability from cnvd

Title

Dell SonicWall TotalSecure TZ 100拒绝服务漏洞

Description

Dell SonicWall TotalSecure TZ 100是美国戴尔（Dell）公司的一款提供入侵防御、反恶意软件、内容/URL筛选和应用程序控制等功能的统一威胁管理（UTM）防火墙。使用5.9.1.0及之前版本的Dell SonicWall TotalSecure TZ 100设备存在安全漏洞。远程攻击者可通过发送特制的数据包利用该漏洞造成拒绝服务。

Severity

中

Patch Name

Dell SonicWall TotalSecure TZ 100拒绝服务漏洞的补丁

Patch Description

Formal description

用户可参考如下供应商提供的安全公告获得补丁信息： https://support.software.dell.com/sonicwall-tz-series/100

Reference

http://jvn.jp/en/jp/JVN90135579/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2015-000176

Impacted products

Name
Dell SonicWall TotalSecure TZ 100 <5.9.1.0-22o

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-7770"
    }
  },
  "description": "Dell SonicWall TotalSecure TZ 100\u662f\u7f8e\u56fd\u6234\u5c14\uff08Dell\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u63d0\u4f9b\u5165\u4fb5\u9632\u5fa1\u3001\u53cd\u6076\u610f\u8f6f\u4ef6\u3001\u5185\u5bb9/URL\u7b5b\u9009\u548c\u5e94\u7528\u7a0b\u5e8f\u63a7\u5236\u7b49\u529f\u80fd\u7684\u7edf\u4e00\u5a01\u80c1\u7ba1\u7406\uff08UTM\uff09\u9632\u706b\u5899\u3002\r\n\r\n\u4f7f\u75285.9.1.0\u53ca\u4e4b\u524d\u7248\u672c\u7684Dell SonicWall TotalSecure TZ 100\u8bbe\u5907\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u7684\u6570\u636e\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "FFRI,Inc",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://support.software.dell.com/sonicwall-tz-series/100",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-07467",
  "openTime": "2015-11-12",
  "patchDescription": "Dell SonicWall TotalSecure TZ 100\u662f\u7f8e\u56fd\u6234\u5c14\uff08Dell\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u63d0\u4f9b\u5165\u4fb5\u9632\u5fa1\u3001\u53cd\u6076\u610f\u8f6f\u4ef6\u3001\u5185\u5bb9/URL\u7b5b\u9009\u548c\u5e94\u7528\u7a0b\u5e8f\u63a7\u5236\u7b49\u529f\u80fd\u7684\u7edf\u4e00\u5a01\u80c1\u7ba1\u7406\uff08UTM\uff09\u9632\u706b\u5899\u3002\r\n\u4f7f\u75285.9.1.0\u53ca\u4e4b\u524d\u7248\u672c\u7684Dell SonicWall TotalSecure TZ 100\u8bbe\u5907\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u7684\u6570\u636e\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Dell SonicWall TotalSecure TZ 100\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Dell SonicWall TotalSecure TZ 100 \u003c5.9.1.0-22o"
  },
  "referenceLink": "http://jvn.jp/en/jp/JVN90135579/index.html \r\nhttp://jvndb.jvn.jp/jvndb/JVNDB-2015-000176",
  "serverity": "\u4e2d",
  "submitTime": "2015-11-10",
  "title": "Dell SonicWall TotalSecure TZ 100\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

var-201511-0256

Vulnerability from variot

Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet. SonicWall TotalSecure TZ 100 Series is a firewall product provided by Dell Inc. SonicWall TotalSecure TZ 100 Series contains a denial-of-service (DoS) vulnerability. FFRI,Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.Processing a specially crafted packet may lead to a denial-of-service (DoS). An attacker can exploit this issue to cause a denial-of-service condition. Dell SonicWall TotalSecure TZ 100 is a Unified Threat Management (UTM) firewall from Dell, USA, that provides functions such as intrusion prevention, anti-malware, content/URL filtering, and application control

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201511-0256",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "sonicwall totalsecure tz 100",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "dell",
        "version": "5.9.1.0"
      },
      {
        "model": "sonicwall totalsecure tz 100 series",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "dell",
        "version": "prior to 5.9.1.0-22o"
      },
      {
        "model": "sonicwall totalsecure tz 100",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "dell",
        "version": "5.9.1.0"
      },
      {
        "model": "sonicwall totalsecure tz series",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "dell",
        "version": "1000"
      },
      {
        "model": "sonicwall totalsecure tz series 5.9.1.0-22o",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "dell",
        "version": "100"
      }
    ],
    "sources": [
      {
        "db": "BID",
        "id": "77499"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-108"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7770"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/o:dell:sonicwall_totalsecure_tz_100_firmware",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "FFRI,Inc",
    "sources": [
      {
        "db": "BID",
        "id": "77499"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2015-7770",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "CVE-2015-7770",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 1.0,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "IPA",
            "availabilityImpact": "Partial",
            "baseScore": 5.0,
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "JVNDB-2015-000176",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Medium",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-85731",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2015-7770",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "IPA",
            "id": "JVNDB-2015-000176",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201511-108",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-85731",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-85731"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-108"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7770"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o allow remote attackers to cause a denial of service via a crafted packet. SonicWall TotalSecure TZ 100 Series is a firewall product provided by Dell Inc. SonicWall TotalSecure TZ 100 Series contains a denial-of-service (DoS) vulnerability. FFRI,Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.Processing a specially crafted packet may lead to a denial-of-service (DoS). \nAn attacker can exploit this issue to cause a denial-of-service condition. Dell SonicWall TotalSecure TZ 100 is a Unified Threat Management (UTM) firewall from Dell, USA, that provides functions such as intrusion prevention, anti-malware, content/URL filtering, and application control",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2015-7770"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      },
      {
        "db": "BID",
        "id": "77499"
      },
      {
        "db": "VULHUB",
        "id": "VHN-85731"
      }
    ],
    "trust": 1.98
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "JVN",
        "id": "JVN90135579",
        "trust": 2.8
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7770",
        "trust": 2.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176",
        "trust": 2.5
      },
      {
        "db": "SECTRACK",
        "id": "1034092",
        "trust": 1.1
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-108",
        "trust": 0.7
      },
      {
        "db": "BID",
        "id": "77499",
        "trust": 0.4
      },
      {
        "db": "SEEBUG",
        "id": "SSVID-89771",
        "trust": 0.1
      },
      {
        "db": "VULHUB",
        "id": "VHN-85731",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-85731"
      },
      {
        "db": "BID",
        "id": "77499"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-108"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7770"
      }
    ]
  },
  "id": "VAR-201511-0256",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-85731"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-11-23T22:56:23.591000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "SonicWALL TZ Series",
        "trust": 0.8,
        "url": "https://support.software.dell.com/sonicwall-tz-series/100"
      },
      {
        "title": "Dell SonicWall TotalSecure TZ 100 Enter the fix for the verification vulnerability",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=58603"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-108"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-20",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-85731"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7770"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.8,
        "url": "http://jvn.jp/en/jp/jvn90135579/index.html"
      },
      {
        "trust": 1.7,
        "url": "http://jvndb.jvn.jp/jvndb/jvndb-2015-000176"
      },
      {
        "trust": 1.1,
        "url": "http://www.securitytracker.com/id/1034092"
      },
      {
        "trust": 0.8,
        "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-7770"
      },
      {
        "trust": 0.8,
        "url": "https://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-7770"
      },
      {
        "trust": 0.3,
        "url": "https://support.software.dell.com/sonicwall-tz-series/100"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-85731"
      },
      {
        "db": "BID",
        "id": "77499"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-108"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7770"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-85731"
      },
      {
        "db": "BID",
        "id": "77499"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-108"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7770"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2015-11-06T00:00:00",
        "db": "VULHUB",
        "id": "VHN-85731"
      },
      {
        "date": "2015-11-06T00:00:00",
        "db": "BID",
        "id": "77499"
      },
      {
        "date": "2015-11-06T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      },
      {
        "date": "2015-11-09T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201511-108"
      },
      {
        "date": "2015-11-06T11:59:05.807000",
        "db": "NVD",
        "id": "CVE-2015-7770"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2016-12-07T00:00:00",
        "db": "VULHUB",
        "id": "VHN-85731"
      },
      {
        "date": "2015-11-06T00:00:00",
        "db": "BID",
        "id": "77499"
      },
      {
        "date": "2015-11-09T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      },
      {
        "date": "2015-11-09T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201511-108"
      },
      {
        "date": "2024-11-21T02:37:22.537000",
        "db": "NVD",
        "id": "CVE-2015-7770"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-108"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "SonicWall TotalSecure TZ 100 Series vulnerable to denial-of-service (DoS)",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-000176"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "input validation",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-108"
      }
    ],
    "trust": 0.6
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2015-7770 (GCVE-0-2015-7770)

Vulnerability from cvelistv5

CVE-2015-7770

Vulnerability from jvndb

fkie_cve-2015-7770

Vulnerability from fkie_nvd

gsd-2015-7770

Vulnerability from gsd

ghsa-49w8-qx9g-ww3r

Vulnerability from github

cnvd-2015-07467

Vulnerability from cnvd

var-201511-0256

Vulnerability from variot

Tags

Sightings

Nomenclature