A Stack-based buffer overflow in the SonicOS HTTP Content-Length response header allows a remote authenticated attacker to cause Denial of Service (DoS) and potentially results in code execution in the firewall. This vulnerability affected SonicOS Gen 5, Gen 6 and Gen 7 firmware versions.

Related CVEs

CVE-2021-20046

Key Information

GHSA ID

GHSA-ghwj-xjhx-g287

Published

January 11, 2022 12:01 AM

Last Modified

January 20, 2022 12:02 AM

CVSS Score

7.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: August 25, 2025 6:17 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.