Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-20028
Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier
Sonicwall Sma 210 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v Firmware
1 Article
7.2
CVSSv2
CVE-2021-33909
fs/seq_file.c in the Linux kernel 3.16 up to and including 5.13.x prior to 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.
Linux Linux Kernel
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Netapp Solidfire -
Netapp Hci Management Node -
Oracle Communications Session Border Controller 8.3
Oracle Communications Session Border Controller 8.4
Oracle Communications Session Border Controller 9.0
Oracle Communications Session Border Controller 8.2
Sonicwall Sma1000 Firmware
9 Github repositories
6.8
CVSSv2
CVE-2021-20024
Multiple Out-of-Bound read vulnerability in SonicWall Switch when handling LLDP Protocol allows an malicious user to cause a system instability or potentially read sensitive information from the memory locations.
Sonicwall Switch
5
CVSSv2
CVE-2021-20019
A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability.
Sonicwall Sonicos
Sonicwall Sonicos 6.0.5.3-94o
Sonicwall Sonicos 6.5.1.12-3n
Sonicwall Sonicosv 6.5.4.4-44v-21-955
Sonicwall Sonicos 6.5.4.7-83n
5
CVSSv2
CVE-2021-20027
A buffer overflow vulnerability in SonicOS allows a remote malicious user to cause a Denial of Service (DoS) by sending a specially crafted request. This vulnerability affects SonicOS Gen5, Gen6, Gen7 platforms, and SonicOSv virtual firewalls.
Sonicwall Sonicos
9
CVSSv2
CVE-2021-20026
A vulnerability in the SonicWall NSM On-Prem product allows an authenticated malicious user to perform OS command injection using a crafted HTTP request. This vulnerability affects NSM On-Prem 2.2.0-R10 and previous versions versions.
Sonicwall Network Security Manager 2.2.0
Sonicwall Network Security Manager
6.9
CVSSv2
CVE-2021-20025
SonicWall Email Security Virtual Appliance version 10.0.9 and previous versions versions contain a default username and a password that is used at initial setup. An attacker could exploit this transitional/temporary user account from the trusted domain to access the Virtual Appli...
Sonicwall Email Security Virtual Appliance
4
CVSSv2
CVE-2021-20023
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated malicious user to read an arbitrary file on the remote host.
Sonicwall Email Security
Sonicwall Hosted Email Security
10
CVSSv2
CVE-2021-20020
A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated malicious user to locally escalate privilege to root.
Sonicwall Global Management System 9.3
7.5
CVSSv2
CVE-2021-20021
A vulnerability in the SonicWall Email Security version 10.0.9.x allows an malicious user to create an administrative account by sending a crafted HTTP request to the remote host.
Sonicwall Email Security
Sonicwall Hosted Email Security
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »