Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-2020-5141
A vulnerability in SonicOS allows a remote unauthenticated malicious user to brute force Virtual Assist ticket ID in the firewall SSLVPN service. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v and Ge...
Sonicwall Sonicos
Sonicwall Sonicos 7.0.0.0
Sonicwall Sonicosv
445
VMScore
CVE-2021-20019
A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability.
Sonicwall Sonicos
Sonicwall Sonicos 6.0.5.3-94o
Sonicwall Sonicos 6.5.1.12-3n
Sonicwall Sonicosv 6.5.4.4-44v-21-955
Sonicwall Sonicos 6.5.4.7-83n
801
VMScore
CVE-2015-3990
The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 prior to 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to configuration.
Sonicwall Uma Em5000 Firmware
Sonicwall Global Management System
Sonicwall Analyzer
NA
CVE-2023-34123
Use of Hard-coded Cryptographic Key vulnerability in SonicWall GMS, SonicWall Analytics. This issue affects GMS: 9.3.2-SP1 and previous versions versions; Analytics: 2.5.0.4-R7 and previous versions versions.
Sonicwall Global Management System 9.3.2
Sonicwall Global Management System
Sonicwall Analytics
Sonicwall Analytics 2.5.0.4-r7
755
VMScore
CVE-2001-1104
SonicWALL SOHO uses easily predictable TCP sequence numbers, which allows remote malicious users to spoof or hijack sessions.
Sonicwall Soho Firmware 4.0.0
Sonicwall Soho Firmware 5.0.0
Sonicwall Soho Firmware 5.1.5.0
1 EDB exploit
694
VMScore
CVE-2003-1490
SonicWall Pro running firmware 6.4.0.1 allows remote malicious users to cause a denial of service (device reset) via a long HTTP POST to the internal interface, possibly due to a buffer overflow.
Sonicwall Pro100 6.4.0.1
Sonicwall Pro200 6.4.0.1
Sonicwall Pro300 6.4.0.1
383
VMScore
CVE-2014-5024
Cross-site scripting (XSS) vulnerability in sgms/panelManager in Dell SonicWALL GMS, Analyzer, and UMA prior to 7.2 SP1 allows remote malicious users to inject arbitrary web script or HTML via the node_id parameter.
Sonicwall Global Management System
Sonicwall Analyzer
Sonicwall Uma Em5000 -
605
VMScore
CVE-2019-7476
A vulnerability in SonicWall Global Management System (GMS), allow a remote user to gain access to the appliance using existing SSH key. This vulnerability affects GMS versions 9.1, 9.0, 8.7, 8.6, 8.4, 8.3 and previous versions.
Sonicwall Global Management System 9.1
Sonicwall Global Management System
Sonicwall Global Management System 8.4
Sonicwall Global Management System 8.6
Sonicwall Global Management System 8.7
Sonicwall Global Management System 9.0
668
VMScore
CVE-2019-7478
A vulnerability in GMS allow unauthenticated user to SQL injection in Webservice module. This vulnerability affected GMS versions GMS 8.4, 8.5, 8.6, 8.7, 9.0 and 9.1.
Sonicwall Global Management System 8.4
Sonicwall Global Management System 8.5
Sonicwall Global Management System 8.6
Sonicwall Global Management System 8.7
Sonicwall Global Management System 9.0
Sonicwall Global Management System 9.1
755
VMScore
CVE-2011-5262
SQL injection vulnerability in prodpage.cfm in SonicWALL Aventail allows remote malicious users to execute arbitrary SQL commands via the CategoryID parameter.
Sonicwall Aventail Sra Ex9000 -
Sonicwall Aventail Sra Ex7000 -
Sonicwall Aventail Sra Ex6000 -
Sonicwall Aventail Sra Ex Virtual Appliance -
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »