Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-5141
A vulnerability in SonicOS allows a remote unauthenticated malicious user to brute force Virtual Assist ticket ID in the firewall SSLVPN service. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v and Ge...
Sonicwall Sonicos
Sonicwall Sonicos 7.0.0.0
Sonicwall Sonicosv
NA
CVE-2015-3990
The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 prior to 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to configuration.
Sonicwall Uma Em5000 Firmware
Sonicwall Global Management System
Sonicwall Analyzer
7.5
CVSSv3
CVE-2021-20019
A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability.
Sonicwall Sonicos
Sonicwall Sonicos 6.0.5.3-94o
Sonicwall Sonicos 6.5.1.12-3n
Sonicwall Sonicosv 6.5.4.4-44v-21-955
Sonicwall Sonicos 6.5.4.7-83n
7.5
CVSSv3
CVE-2023-34123
Use of Hard-coded Cryptographic Key vulnerability in SonicWall GMS, SonicWall Analytics. This issue affects GMS: 9.3.2-SP1 and previous versions versions; Analytics: 2.5.0.4-R7 and previous versions versions.
Sonicwall Global Management System 9.3.2
Sonicwall Global Management System
Sonicwall Analytics
Sonicwall Analytics 2.5.0.4-r7
NA
CVE-2014-5024
Cross-site scripting (XSS) vulnerability in sgms/panelManager in Dell SonicWALL GMS, Analyzer, and UMA prior to 7.2 SP1 allows remote malicious users to inject arbitrary web script or HTML via the node_id parameter.
Sonicwall Global Management System
Sonicwall Analyzer
Sonicwall Uma Em5000 -
NA
CVE-2001-1104
SonicWALL SOHO uses easily predictable TCP sequence numbers, which allows remote malicious users to spoof or hijack sessions.
Sonicwall Soho Firmware 4.0.0
Sonicwall Soho Firmware 5.0.0
Sonicwall Soho Firmware 5.1.5.0
1 EDB exploit
NA
CVE-2003-1490
SonicWall Pro running firmware 6.4.0.1 allows remote malicious users to cause a denial of service (device reset) via a long HTTP POST to the internal interface, possibly due to a buffer overflow.
Sonicwall Pro100 6.4.0.1
Sonicwall Pro200 6.4.0.1
Sonicwall Pro300 6.4.0.1
8.1
CVSSv3
CVE-2019-7476
A vulnerability in SonicWall Global Management System (GMS), allow a remote user to gain access to the appliance using existing SSH key. This vulnerability affects GMS versions 9.1, 9.0, 8.7, 8.6, 8.4, 8.3 and previous versions.
Sonicwall Global Management System 9.1
Sonicwall Global Management System
Sonicwall Global Management System 8.4
Sonicwall Global Management System 8.6
Sonicwall Global Management System 8.7
Sonicwall Global Management System 9.0
9.8
CVSSv3
CVE-2019-7478
A vulnerability in GMS allow unauthenticated user to SQL injection in Webservice module. This vulnerability affected GMS versions GMS 8.4, 8.5, 8.6, 8.7, 9.0 and 9.1.
Sonicwall Global Management System 8.4
Sonicwall Global Management System 8.5
Sonicwall Global Management System 8.6
Sonicwall Global Management System 8.7
Sonicwall Global Management System 9.0
Sonicwall Global Management System 9.1
9.8
CVSSv3
CVE-2022-22274
A Stack-based buffer overflow vulnerability in the SonicOS via HTTP request allows a remote unauthenticated malicious user to cause Denial of Service (DoS) or potentially results in code execution in the firewall.
Sonicwall Sonicos
Sonicwall Sonicosv
3 Github repositories
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »