Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-20028
Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier
Sonicwall Sma 210 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v Firmware
1 Article
7.2
CVSSv2
CVE-2021-33909
fs/seq_file.c in the Linux kernel 3.16 up to and including 5.13.x prior to 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.
Linux Linux Kernel
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Netapp Solidfire -
Netapp Hci Management Node -
Oracle Communications Session Border Controller 8.3
Oracle Communications Session Border Controller 8.4
Oracle Communications Session Border Controller 9.0
Oracle Communications Session Border Controller 8.2
Sonicwall Sma1000 Firmware
9 Github repositories
6.8
CVSSv2
CVE-2021-20024
Multiple Out-of-Bound read vulnerability in SonicWall Switch when handling LLDP Protocol allows an malicious user to cause a system instability or potentially read sensitive information from the memory locations.
Sonicwall Switch
5
CVSSv2
CVE-2021-20019
A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability.
Sonicwall Sonicos
Sonicwall Sonicos 6.0.5.3-94o
Sonicwall Sonicos 6.5.1.12-3n
Sonicwall Sonicosv 6.5.4.4-44v-21-955
Sonicwall Sonicos 6.5.4.7-83n
5
CVSSv2
CVE-2021-20027
A buffer overflow vulnerability in SonicOS allows a remote malicious user to cause a Denial of Service (DoS) by sending a specially crafted request. This vulnerability affects SonicOS Gen5, Gen6, Gen7 platforms, and SonicOSv virtual firewalls.
Sonicwall Sonicos
9
CVSSv2
CVE-2021-20026
A vulnerability in the SonicWall NSM On-Prem product allows an authenticated malicious user to perform OS command injection using a crafted HTTP request. This vulnerability affects NSM On-Prem 2.2.0-R10 and previous versions versions.
Sonicwall Network Security Manager
Sonicwall Network Security Manager 2.2.0
6.9
CVSSv2
CVE-2021-20025
SonicWall Email Security Virtual Appliance version 10.0.9 and previous versions versions contain a default username and a password that is used at initial setup. An attacker could exploit this transitional/temporary user account from the trusted domain to access the Virtual Appli...
Sonicwall Email Security Virtual Appliance
4
CVSSv2
CVE-2021-20023
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated malicious user to read an arbitrary file on the remote host.
Sonicwall Email Security
Sonicwall Hosted Email Security
10
CVSSv2
CVE-2021-20020
A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated malicious user to locally escalate privilege to root.
7.5
CVSSv2
CVE-2021-20021
A vulnerability in the SonicWall Email Security version 10.0.9.x allows an malicious user to create an administrative account by sending a crafted HTTP request to the remote host.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »