{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-26T03:53:00.241","vulnerabilities":[{"cve":{"id":"CVE-2024-22396","sourceIdentifier":"PSIRT@sonicwall.com","published":"2024-03-14T04:15:09.080","lastModified":"2026-06-17T07:11:19.567","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An Integer-based buffer overflow vulnerability in the SonicOS via IPSec allows a remote attacker in specific conditions to cause Denial of Service (DoS) and potentially execute arbitrary code by sending a specially crafted IKEv2 payload."},{"lang":"es","value":"Una vulnerabilidad de desbordamiento de búfer de almacenamiento dinámico en SonicOS a través de IPSec permite que un atacante remoto en condiciones específicas cause Denegación de Servicio (DoS) y potencialmente ejecute código arbitrario enviando un payload IKEv2 especialmente manipulado."}],"affected":[{"source":"PSIRT@sonicwall.com","affectedData":[{"vendor":"SonicWall","product":"SonicOS","defaultStatus":"unknown","platforms":["Gen6","Gen7"],"versions":[{"version":"7.0.1-5145 and earlier versions","status":"affected"},{"version":"7.1.1-7047 and earlier versions","status":"affected"},{"version":"6.5.4.13-105n and earlier versions","status":"affected"},{"version":"6.5.4.4-44v-21-2340 and earlier versions","status":"affected"}]}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","affectedData":[{"vendor":"sonicwall","product":"sonicos","defaultStatus":"unknown","cpes":["cpe:2.3:o:sonicwall:sonicos:-:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThanOrEqual":"7.0.1-5145","versionType":"custom","status":"affected"},{"version":"0","lessThanOrEqual":"7.1.1-7047","versionType":"custom","status":"affected"},{"version":"0","lessThanOrEqual":"6.5.4.13-105n","versionType":"custom","status":"affected"},{"version":"0","lessThanOrEqual":"6.5.4.4-44v-21-2340","versionType":"custom","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":3.6}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-03-14T16:30:28.118688Z","id":"CVE-2024-22396","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"PSIRT@sonicwall.com","type":"Secondary","description":[{"lang":"en","value":"CWE-190"}]}],"references":[{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0004","source":"PSIRT@sonicwall.com"},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0004","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}