Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6273
Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote malicious users to execute arbitrary code via format string specifiers in the (1) Hostname tag or the (2) name attribute in the Connect...
Sonicwall Global Vpn Client 3.1.556
Sonicwall Global Vpn Client 4.0.0.810
1 EDB exploit
7.8
CVSSv3
CVE-2023-44217
A local privilege escalation vulnerability in SonicWall Net Extender MSI client for Windows 10.2.336 and previous versions versions allows a local low-privileged user to gain system privileges through running repair functionality.
Sonicwall Netextender
7.8
CVSSv3
CVE-2023-44218
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation (LPE) vulnerability.
Sonicwall Netextender
7.3
CVSSv3
CVE-2023-44220
SonicWall NetExtender Windows (32-bit and 64-bit) client 10.2.336 and previous versions versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Successful exploitation via a local attacker could result in command execution in the target system.
Sonicwall Netextender
6.1
CVSSv3
CVE-2021-20031
A Host Header Redirection vulnerability in SonicOS potentially allows a remote malicious user to redirect firewall management users to arbitrary web domains.
Sonicwall Sonicos
8.8
CVSSv3
CVE-2023-1101
SonicOS SSLVPN improper restriction of excessive MFA attempts vulnerability allows an authenticated malicious user to use excessive MFA codes.
Sonicwall Sonicos
6.5
CVSSv3
CVE-2023-41711
SonicOS post-authentication Stack-Based Buffer Overflow Vulnerability in the sonicwall.exp, prefs.exp URL endpoints lead to a firewall crash.
Sonicwall Sonicos
6.5
CVSSv3
CVE-2023-41712
SonicOS post-authentication Stack-Based Buffer Overflow Vulnerability in the SSL VPN plainprefs.exp URL endpoint leads to a firewall crash.
Sonicwall Sonicos
7.5
CVSSv3
CVE-2023-41713
SonicOS Use of Hard-coded Password vulnerability in the 'dynHandleBuyToolbar' demo function.
Sonicwall Sonicos
8.8
CVSSv3
CVE-2023-41715
SonicOS post-authentication Improper Privilege Management vulnerability in the SonicOS SSL VPN Tunnel allows users to elevate their privileges inside the tunnel.
Sonicwall Sonicos
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »