Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall firmware vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-22394
An improper authentication vulnerability has been identified in SonicWall SonicOS SSL-VPN feature, which in specific conditions could allow a remote malicious user to bypass authentication. This issue affects only firmware version SonicOS 7.1.1-7040.
Sonicwall Sonicos 7.1.1-7040
NA
CVE-2023-0126
Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated malicious user to access arbitrary files and directories stored outside the web root directory.
Sonicwall Sma1000 Firmware 12.4.2
2 Github repositories
5
CVSSv2
CVE-2022-1701
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and previous versions versions uses a shared and hard-coded encryption key to store data.
Sonicwall Sma 6200 Firmware 12.4.0
Sonicwall Sma 6200 Firmware 12.4.1
Sonicwall Sma 6210 Firmware 12.4.0
Sonicwall Sma 6210 Firmware 12.4.1
Sonicwall Sma 7200 Firmware 12.4.0
Sonicwall Sma 7200 Firmware 12.4.1
Sonicwall Sma 7210 Firmware 12.4.0
Sonicwall Sma 7210 Firmware 12.4.1
Sonicwall Sma 8000v Firmware 12.4.0
Sonicwall Sma 8000v Firmware 12.4.1
5.8
CVSSv2
CVE-2022-1702
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and previous versions versions accept a user-controlled input that specifies a link to an external site and uses that link in a redirect which leads to Open redirection vulnerability.
Sonicwall Sma 6200 Firmware 12.4.0
Sonicwall Sma 6200 Firmware 12.4.1
Sonicwall Sma 6210 Firmware 12.4.0
Sonicwall Sma 6210 Firmware 12.4.1
Sonicwall Sma 7200 Firmware 12.4.0
Sonicwall Sma 7200 Firmware 12.4.1
Sonicwall Sma 7210 Firmware 12.4.0
Sonicwall Sma 7210 Firmware 12.4.1
Sonicwall Sma 8000v Firmware 12.4.0
Sonicwall Sma 8000v Firmware 12.4.1
7.5
CVSSv2
CVE-2022-22282
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and previous versions versions incorrectly restricts access to a resource using HTTP connections from an unauthorized actor leading to Improper Access Control vulnerability.
Sonicwall Sma 6200 Firmware 12.4.0
Sonicwall Sma 6200 Firmware 12.4.1
Sonicwall Sma 6210 Firmware 12.4.0
Sonicwall Sma 6210 Firmware 12.4.1
Sonicwall Sma 7200 Firmware 12.4.0
Sonicwall Sma 7200 Firmware 12.4.1
Sonicwall Sma 7210 Firmware 12.4.0
Sonicwall Sma 7210 Firmware 12.4.1
Sonicwall Sma 8000v Firmware 12.4.0
Sonicwall Sma 8000v Firmware 12.4.1
4
CVSSv2
CVE-2022-22279
A post-authentication arbitrary file read vulnerability impacting end-of-life Secure Remote Access (SRA) products and older firmware versions of Secure Mobile Access (SMA) 100 series products, specifically the SRA appliances running all 8.x, 9.0.0.5-19sv and previous versions ver...
Sonicwall Sra 1200 Firmware
Sonicwall Sra 4200 Firmware
Sonicwall Sma 210 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v Firmware
7.5
CVSSv2
CVE-2022-22273
Improper neutralization of Special Elements leading to OS Command Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products and older firmware versions of Secure Mobile Access (SMA) 100 series products, specifically the SRA appliances running all 8.x, 9.0....
Sonicwall Sma 200 Firmware
Sonicwall Sma 210 Firmware
Sonicwall Sma 400 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v Firmware
Sonicwall Sra 4200 Firmware
Sonicwall Sra 4600 Firmware
Sonicwall Sra 1600 Firmware
Sonicwall Sra 1200 Firmware
6.5
CVSSv2
CVE-2021-20046
A Stack-based buffer overflow in the SonicOS HTTP Content-Length response header allows a remote authenticated malicious user to cause Denial of Service (DoS) and potentially results in code execution in the firewall. This vulnerability affected SonicOS Gen 5, Gen 6 and Gen 7 fir...
Sonicwall Sonicos
6.5
CVSSv2
CVE-2021-20048
A Stack-based buffer overflow in the SonicOS SessionID HTTP response header allows a remote authenticated malicious user to cause Denial of Service (DoS) and potentially results in code execution in the firewall. This vulnerability affected SonicOS Gen 5, Gen 6 and Gen 7 firmware...
Sonicwall Sonicos
5.1
CVSSv2
CVE-2021-45046
It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with...
Apache Log4j 2.0
Apache Log4j
Intel Oneapi -
Intel Audio Development Kit -
Intel Datacenter Manager -
Intel System Debugger -
Intel Secure Device Onboard -
Intel Sensor Solution Firmware Development Kit -
Intel Computer Vision Annotation Tool -
Intel Genomics Kernel Library -
Intel System Studio -
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
195 Github repositories
9 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »