CVE-2023-41715

CVE-2023-41715

Vendor Sonicwall

Product SonicOS

Weakness CWE-269

Published October 17, 2023

Last update December 16, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

SonicOS post-authentication Improper Privilege Management vulnerability in the SonicOS SSL VPN Tunnel allows users to elevate their privileges inside the tunnel.

Key dates

02Disclosure timeline

October 17, 2023 CVE published

December 16, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-41715 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/269.html

Related vulnerabilities

Identifiers

CVE CVE-2023-41715

CWE CWE-269

Affected versions

Vendor Sonicwall

Product SonicOS

Affected 7.0.1-5119 and earlier versions

Vendor Sonicwall

Product SonicOS

Affected 7.0.1-5129 and earlier versions

Vendor Sonicwall

Product SonicOS

Affected 6.5.4.4-44v-21-2079 and earlier versions

Vendor Sonicwall

Product SonicOS

Affected 6.5.4.12-101n and earlier versions

01Description

02Disclosure timeline

03References

04Related CVE