Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2021-20022
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated malicious user to upload an arbitrary file to the remote host.
6.5
CVSSv2
CVE-2019-7479
A vulnerability in SonicOS allow authenticated read-only admin can elevate permissions to configuration mode. This vulnerability affected SonicOS Gen 5 version 5.9.1.12-4o and previous versions, Gen 6 version 6.2.7.4-32n, 6.5.1.4-4n, 6.5.2.3-4n, 6.5.3.3-3n, 6.2.7.10-3n, 6.4.1.0-3...
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.4-32n
Sonicwall Sonicos 6.2.7.10-3n
Sonicwall Sonicos 6.4.1.0-3n
Sonicwall Sonicos 6.5.1.4-4n
Sonicwall Sonicos 6.5.1.9-4n
Sonicwall Sonicos 6.5.2.3-4n
Sonicwall Sonicos 6.5.3.3-3n
Sonicwall Sonicosv 6.5.0.2.8v
6.5
CVSSv2
CVE-2019-7485
Buffer overflow in SonicWall SMA100 allows an authenticated user to execute arbitrary code in DEARegister CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and previous versions.
Sonicwall Sma 100 Firmware
6.5
CVSSv2
CVE-2019-7486
Code injection in SonicWall SMA100 allows an authenticated user to execute arbitrary code in viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.4 and previous versions.
Sonicwall Sma 100 Firmware
6.5
CVSSv2
CVE-2014-4977
Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) selectedUserGroup parameter in a create new user request to cgi-bin/admin.cgi or the (2) user_id parameter in the changeUnit ...
Sonicwall Scrutinizer 11.0.1
1 EDB exploit
6.5
CVSSv2
CVE-2012-2962
SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) prior to 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q parameter.
Sonicwall Scrutinizer
2 EDB exploits
6.4
CVSSv2
CVE-2021-20034
An improper access control vulnerability in SMA100 allows a remote unauthenticated malicious user to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to factory default settings.
Sonicwall Sma 200 Firmware
Sonicwall Sma 210 Firmware
Sonicwall Sma 400 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v
6.4
CVSSv2
CVE-2020-5148
SonicWall SSO-agent default configuration uses NetAPI to probe the associated IP's in the network, this client probing method allows a potential malicious user to capture the password hash of the privileged user and potentially forces the SSO Agent to authenticate allowing a...
Sonicwall Directory Services Connector
6.4
CVSSv2
CVE-2020-5141
A vulnerability in SonicOS allows a remote unauthenticated malicious user to brute force Virtual Assist ticket ID in the firewall SSLVPN service. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v and Ge...
Sonicwall Sonicos
Sonicwall Sonicos 7.0.0.0
Sonicwall Sonicosv
5.8
CVSSv2
CVE-2022-1702
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and previous versions versions accept a user-controlled input that specifies a link to an external site and uses that link in a redirect which leads to Open redirection vulnerability.
Sonicwall Sma 6200 Firmware 12.4.0
Sonicwall Sma 6200 Firmware 12.4.1
Sonicwall Sma 6210 Firmware 12.4.0
Sonicwall Sma 6210 Firmware 12.4.1
Sonicwall Sma 7200 Firmware 12.4.0
Sonicwall Sma 7200 Firmware 12.4.1
Sonicwall Sma 7210 Firmware 12.4.0
Sonicwall Sma 7210 Firmware 12.4.1
Sonicwall Sma 8000v Firmware 12.4.0
Sonicwall Sma 8000v Firmware 12.4.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »