Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2018-5691
SonicWall Global Management System (GMS) 8.1 has XSS via the `newName` and `Name` values of the `/sgms/TreeControl` module.
Sonicwall Analyzer
Sonicwall Global Management System
NA
CVE-2001-0376
SonicWALL Tele2 and SOHO firewalls with 6.0.0.0 firmware using IPSEC with IKE pre-shared keys do not allow for the use of full 128 byte IKE pre-shared keys, which is the intended design of the IKE pre-shared key, and only support 48 byte keys. This allows a remote malicious user ...
Sonicwall Soho2 6.0.0
Sonicwall Tele2 6.0.0
7.8
CVSSv3
CVE-2019-7487
Installation of the SonicOS SSLVPN NACagent 3.5 on the Windows operating system, an autorun value is created does not put the path in quotes, so if a malicious binary by an attacker within the parent path could allow code execution.
Sonicwall Sonicos
Sonicwall Sonicos Sslvpn Nacagent 3.5
9.8
CVSSv3
CVE-2021-20021
A vulnerability in the SonicWall Email Security version 10.0.9.x allows an malicious user to create an administrative account by sending a crafted HTTP request to the remote host.
Sonicwall Email Security
Sonicwall Hosted Email Security
7.2
CVSSv3
CVE-2021-20022
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated malicious user to upload an arbitrary file to the remote host.
Sonicwall Email Security
Sonicwall Hosted Email Security
4.9
CVSSv3
CVE-2021-20023
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated malicious user to read an arbitrary file on the remote host.
Sonicwall Email Security
Sonicwall Hosted Email Security
NA
CVE-2000-1097
The web server for the SonicWALL SOHO firewall allows remote malicious users to cause a denial of service via a long username in the authentication page.
Sonicwall Soho Firewall 5.0.0
Sonicwall Soho Firewall 4.0.0
NA
CVE-2000-1098
The web server for the SonicWALL SOHO firewall allows remote malicious users to cause a denial of service via an empty GET or POST request.
Sonicwall Soho Firewall 5.0.0
Sonicwall Soho Firewall 4.0.0
NA
CVE-2007-5815
Absolute path traversal vulnerability in the WebCacheCleaner ActiveX control 1.3.0.3 in SonicWall SSL-VPN 200 prior to 2.1, and SSL-VPN 2000/4000 prior to 2.5, allows remote malicious users to delete arbitrary files via a full pathname in the argument to the FileDelete method.
Sonicwall Ssl Vpn2000/4000
Sonicwall Ssl Vpn 200
1 EDB exploit
8.8
CVSSv3
CVE-2021-20026
A vulnerability in the SonicWall NSM On-Prem product allows an authenticated malicious user to perform OS command injection using a crafted HTTP request. This vulnerability affects NSM On-Prem 2.2.0-R10 and previous versions versions.
Sonicwall Network Security Manager 2.2.0
Sonicwall Network Security Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »