Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall email security vulnerabilities and exploits
(subscribe to this query)
4.9
CVSSv3
CVE-2021-20023
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated malicious user to read an arbitrary file on the remote host.
Sonicwall Email Security
Sonicwall Hosted Email Security
7.5
CVSSv3
CVE-2022-2324
Improperly Implemented Security Check vulnerability in the SonicWall Hosted Email Security leads to bypass of Capture ATP security service in the appliance. This vulnerability impacts 10.0.17.7319 and previous versions versions
Sonicwall Email Security
5.3
CVSSv3
CVE-2023-0655
SonicWall Email Security contains a vulnerability that could permit a remote unauthenticated attacker access to an error page that includes sensitive information about users email addresses.
Sonicwall Email Security
9.8
CVSSv3
CVE-2019-7488
Weak default password cause vulnerability in SonicWall Email Security appliance which leads to attacker gain access to appliance database. This vulnerability affected Email Security Appliance version 10.0.2 and previous versions.
Sonicwall Email Security Appliance
9.8
CVSSv3
CVE-2019-7489
A vulnerability in SonicWall Email Security appliance allow an unauthenticated user to perform remote code execution. This vulnerability affected Email Security Appliance version 10.0.2 and previous versions.
Sonicwall Email Security Appliance
NA
CVE-2014-2879
Multiple cross-site scripting (XSS) vulnerabilities in Dell SonicWALL Email Security 7.4.5 and previous versions allow remote authenticated administrators to inject arbitrary web script or HTML via (1) the uploadPatch parameter to the System/Advanced page (settings_advanced.html)...
Sonicwall Email Security Appliance
1 EDB exploit
7.8
CVSSv3
CVE-2021-20025
SonicWall Email Security Virtual Appliance version 10.0.9 and previous versions versions contain a default username and a password that is used at initial setup. An attacker could exploit this transitional/temporary user account from the trusted domain to access the Virtual Appli...
Sonicwall Email Security Virtual Appliance
NA
CVE-2008-2162
Cross-site scripting (XSS) vulnerability in SonicWall Email Security 6.1.1 allows remote malicious users to inject arbitrary web script or HTML via the Host header in a request to a non-existent web page, which is not properly sanitized in an error page.
Sonicwall E-mail Security 6.1.1
1 EDB exploit
7.2
CVSSv3
CVE-2021-20022
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated malicious user to upload an arbitrary file to the remote host.
9.8
CVSSv3
CVE-2021-20021
A vulnerability in the SonicWall Email Security version 10.0.9.x allows an malicious user to create an administrative account by sending a crafted HTTP request to the remote host.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »