Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall sonicos vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-20046
A Stack-based buffer overflow in the SonicOS HTTP Content-Length response header allows a remote authenticated malicious user to cause Denial of Service (DoS) and potentially results in code execution in the firewall. This vulnerability affected SonicOS Gen 5, Gen 6 and Gen 7 fir...
Sonicwall Sonicos
8.8
CVSSv3
CVE-2021-20048
A Stack-based buffer overflow in the SonicOS SessionID HTTP response header allows a remote authenticated malicious user to cause Denial of Service (DoS) and potentially results in code execution in the firewall. This vulnerability affected SonicOS Gen 5, Gen 6 and Gen 7 firmware...
Sonicwall Sonicos
8.8
CVSSv3
CVE-2023-1101
SonicOS SSLVPN improper restriction of excessive MFA attempts vulnerability allows an authenticated malicious user to use excessive MFA codes.
Sonicwall Sonicos
7.5
CVSSv3
CVE-2019-12258
Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET security vulnerability: DoS of TCP connection via malformed TCP options.
Windriver Vxworks 7.0
Windriver Vxworks
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.1
Sonicwall Sonicos 6.2.7.7
Sonicwall Sonicos 6.2.7.0
Siemens Siprotec 5 Firmware
Netapp E-series Santricity Os Controller
Siemens Power Meter 9410 Firmware
Siemens Power Meter 9810 Firmware
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom Win7018 Firmware
Siemens Ruggedcom Win7025 Firmware
Siemens Ruggedcom Win7200 Firmware
Belden Hirschmann Hios
Belden Garrettcom Magnum Dx940e Firmware
2 Metasploit modules
2 Github repositories
1 Article
8.1
CVSSv3
CVE-2019-12263
Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). There is an IPNET security vulnerability: TCP Urgent Pointer state confusion due to race condition.
Windriver Vxworks 7.0
Windriver Vxworks
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.1
Sonicwall Sonicos 6.2.7.7
Sonicwall Sonicos 6.2.7.0
Siemens Siprotec 5 Firmware
Netapp E-series Santricity Os Controller
Siemens Power Meter 9410 Firmware
Siemens Power Meter 9810 Firmware
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom Win7018 Firmware
Siemens Ruggedcom Win7025 Firmware
Siemens Ruggedcom Win7200 Firmware
Belden Hirschmann Hios
Belden Garrettcom Magnum Dx940e Firmware
1 Article
5.3
CVSSv3
CVE-2019-12265
Wind River VxWorks 6.5, 6.6, 6.7, 6.8, 6.9.3 and 6.9.4 has a Memory Leak in the IGMPv3 client component. There is an IPNET security vulnerability: IGMP Information leak via IGMPv3 specific membership report.
Windriver Vxworks 7.0
Windriver Vxworks
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.1
Sonicwall Sonicos 6.2.7.7
Sonicwall Sonicos 6.2.7.0
Siemens Siprotec 5 Firmware
Netapp E-series Santricity Os Controller
Siemens Power Meter 9410 Firmware
Siemens Power Meter 9810 Firmware
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom Win7018 Firmware
Siemens Ruggedcom Win7025 Firmware
Siemens Ruggedcom Win7200 Firmware
Belden Hirschmann Hios
Belden Garrettcom Magnum Dx940e Firmware
1 Article
9.8
CVSSv3
CVE-2019-12260
Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 2 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer state confusion caused by a malformed TCP AO option.
Windriver Vxworks 7.0
Windriver Vxworks
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.1
Sonicwall Sonicos 6.2.7.7
Sonicwall Sonicos 6.2.7.0
Siemens Siprotec 5 Firmware
Netapp E-series Santricity Os Controller
Siemens Power Meter 9410 Firmware
Siemens Power Meter 9810 Firmware
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom Win7018 Firmware
Siemens Ruggedcom Win7025 Firmware
Siemens Ruggedcom Win7200 Firmware
Oracle Communications Eagle
Belden Hirschmann Hios
Belden Garrettcom Magnum Dx940e Firmware
1 Github repository
1 Article
9.8
CVSSv3
CVE-2019-12261
Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 3 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer state confusion during connect() to a remote host.
Windriver Vxworks 7.0
Windriver Vxworks
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.1
Sonicwall Sonicos 6.2.7.7
Sonicwall Sonicos 6.2.7.0
Siemens Siprotec 5 Firmware
Netapp E-series Santricity Os Controller
Siemens Power Meter 9410 Firmware
Siemens Power Meter 9810 Firmware
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom Win7018 Firmware
Siemens Ruggedcom Win7025 Firmware
Siemens Ruggedcom Win7200 Firmware
Oracle Communications Eagle
Belden Hirschmann Hios
Belden Garrettcom Magnum Dx940e Firmware
1 Article
9.8
CVSSv3
CVE-2024-22394
An improper authentication vulnerability has been identified in SonicWall SonicOS SSL-VPN feature, which in specific conditions could allow a remote malicious user to bypass authentication. This issue affects only firmware version SonicOS 7.1.1-7040.
Sonicwall Sonicos 7.1.1-7040
5.3
CVSSv3
CVE-2020-5132
SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misconfiguration leads to possible DNS flaw known as domain name collision vulnerability. When the users publicly display their organization’s internal domain names in the SSL-VPN authentication page, an atta...
Sonicwall Sma100 Firmware 10.2.0.2-20sv
Sonicwall Sma100 Firmware 12.4.0-2223
Sonicwall Sonicos 6.5.4.6-79n
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »