Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2021-20020
A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated malicious user to locally escalate privilege to root.
890
VMScore
CVE-2016-2397
The cliserver implementation in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote malicious users to deserialize and execute arbitrary Java code via crafted XML data.
Sonicwall Uma Em5000 Firmware 8.0
Sonicwall Uma Em5000 Firmware 8.1
Sonicwall Uma Em5000 Firmware 7.2
Sonicwall Global Management System 7.2
Sonicwall Global Management System 8.0
Sonicwall Global Management System 8.1
Sonicwall Analyzer 8.0
Sonicwall Analyzer 7.2
Sonicwall Analyzer 8.1
828
VMScore
CVE-2010-2583
Stack-based buffer overflow in SonicWALL SSL-VPN End-Point Interrogator/Installer ActiveX control (Aventail.EPInstaller) prior to 10.5.2 and 10.0.5 hotfix 3 allows remote malicious users to execute arbitrary code via long (1) CabURL and (2) Location arguments to the Install3rdPar...
Sonicwall Ssl-vpn End-point Interrogator\\/installer Activex Control
Sonicwall Ssl-vpn End-point Interrogator\\/installer Activex Control 10.0.5
828
VMScore
CVE-2007-5814
Multiple buffer overflows in the SonicWall SSL-VPN NetExtender NELaunchCtrl ActiveX control prior to 2.1.0.51, and 2.5.x prior to 2.5.0.56, allow remote malicious users to execute arbitrary code via a long (1) serverAddress, (2) sessionId, (3) clientIPLower, (4) clientIPHigher, (...
Sonicwall Ssl Vpn
801
VMScore
CVE-2022-1703
Improper neutralization of special elements in the SonicWall SSL-VPN SMA100 series management interface allows a remote authenticated malicious user to inject OS Commands which potentially leads to remote command execution vulnerability or denial of service (DoS) attack.
Sonicwall Sma 210 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v Firmware
801
VMScore
CVE-2021-20039
Improper neutralization of special elements in the SMA100 management interface '/cgi-bin/viewcert' POST http method allows a remote authenticated malicious user to inject arbitrary commands as a 'nobody' user. This vulnerability affected SMA 200, 210, 400, 410...
Sonicwall Sma 200 Firmware 9.0.0.11-31sv
Sonicwall Sma 200 Firmware 10.2.0.8-37sv
Sonicwall Sma 200 Firmware 10.2.1.1-19sv
Sonicwall Sma 210 Firmware 9.0.0.11-31sv
Sonicwall Sma 210 Firmware 10.2.0.8-37sv
Sonicwall Sma 210 Firmware 10.2.1.1-19sv
Sonicwall Sma 410 Firmware 9.0.0.11-31sv
Sonicwall Sma 410 Firmware 10.2.0.8-37sv
Sonicwall Sma 410 Firmware 10.2.1.1-19sv
Sonicwall Sma 400 Firmware 9.0.0.11-31sv
Sonicwall Sma 400 Firmware 10.2.0.8-37sv
Sonicwall Sma 400 Firmware 10.2.1.1-19sv
Sonicwall Sma 500v Firmware 9.0.0.11-31sv
Sonicwall Sma 500v Firmware 10.2.0.8-37sv
Sonicwall Sma 500v Firmware 10.2.1.1-19sv
1 Github repository
801
VMScore
CVE-2021-20044
A post-authentication remote command injection vulnerability in SonicWall SMA100 allows a remote authenticated malicious user to execute OS system commands in the appliance. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances.
Sonicwall Sma 200 Firmware 10.2.0.8-37sv
Sonicwall Sma 200 Firmware 10.2.1.1-19sv
Sonicwall Sma 210 Firmware 10.2.0.8-37sv
Sonicwall Sma 210 Firmware 10.2.1.1-19sv
Sonicwall Sma 410 Firmware 10.2.0.8-37sv
Sonicwall Sma 410 Firmware 10.2.1.1-19sv
Sonicwall Sma 400 Firmware 10.2.0.8-37sv
Sonicwall Sma 400 Firmware 10.2.1.1-19sv
Sonicwall Sma 500v Firmware 10.2.0.8-37sv
Sonicwall Sma 500v Firmware 10.2.1.1-19sv
1 Article
801
VMScore
CVE-2021-20026
A vulnerability in the SonicWall NSM On-Prem product allows an authenticated malicious user to perform OS command injection using a crafted HTTP request. This vulnerability affects NSM On-Prem 2.2.0-R10 and previous versions versions.
Sonicwall Network Security Manager
Sonicwall Network Security Manager 2.2.0
801
VMScore
CVE-2021-20017
A post-authenticated command injection vulnerability in SonicWall SMA100 allows an authenticated malicious user to execute OS commands as a 'nobody' user. This vulnerability impacts SMA100 version 10.2.0.5 and previous versions.
Sonicwall Sma100 Firmware
801
VMScore
CVE-2020-5146
A vulnerability in SonicWall SMA100 appliance allow an authenticated management-user to perform OS command injection using HTTP POST parameters. This vulnerability affected SMA100 Appliance version 10.2.0.2-20sv and previous versions.
Sonicwall Sma 100 Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »