Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall firmware vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-22394
An improper authentication vulnerability has been identified in SonicWall SonicOS SSL-VPN feature, which in specific conditions could allow a remote malicious user to bypass authentication. This issue affects only firmware version SonicOS 7.1.1-7040.
Sonicwall Sonicos 7.1.1-7040
NA
CVE-2023-44221
Improper neutralization of special elements in the SMA100 SSL-VPN management interface allows a remote authenticated attacker with administrative privilege to inject arbitrary commands as a 'nobody' user, potentially leading to OS Command Injection Vulnerability.
Sonicwall Sma 200 Firmware
Sonicwall Sma 210 Firmware
Sonicwall Sma 400 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v Firmware
NA
CVE-2023-5970
Improper authentication in the SMA100 SSL-VPN virtual office portal allows a remote authenticated malicious user to create an identical external domain user using accent characters, resulting in an MFA bypass.
Sonicwall Sma 200 Firmware
Sonicwall Sma 210 Firmware
Sonicwall Sma 400 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v Firmware
NA
CVE-2022-47522
The IEEE 802.11 specifications up to and including 802.11ax allow physically proximate malicious users to intercept (possibly cleartext) target-destined frames by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to...
Ieee Ieee 802.11
Sonicwall Tz670 Firmware -
Sonicwall Tz570 Firmware -
Sonicwall Tz570p Firmware -
Sonicwall Tz570w Firmware -
Sonicwall Tz470 Firmware -
Sonicwall Tz470w Firmware -
Sonicwall Tz370 Firmware -
Sonicwall Tz370w Firmware -
Sonicwall Tz270 Firmware -
Sonicwall Tz270w Firmware -
Sonicwall Tz600 Firmware -
Sonicwall Tz600p Firmware -
Sonicwall Tz500 Firmware -
Sonicwall Tz500w Firmware -
Sonicwall Tz400 Firmware -
Sonicwall Tz400w Firmware -
Sonicwall Tz350 Firmware -
Sonicwall Tz350w Firmware -
Sonicwall Tz300 Firmware -
Sonicwall Tz300p Firmware -
Sonicwall Tz300w Firmware -
2 Github repositories
1 Article
NA
CVE-2023-0126
Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated malicious user to access arbitrary files and directories stored outside the web root directory.
Sonicwall Sma1000 Firmware 12.4.2
2 Github repositories
NA
CVE-2022-2915
A Heap-based Buffer Overflow vulnerability in the SonicWall SMA100 appliance allows a remote authenticated malicious user to cause Denial of Service (DoS) on the appliance or potentially lead to code execution. This vulnerability impacts 10.2.1.5-34sv and previous versions versio...
Sonicwall Sma 200 Firmware
Sonicwall Sma 210 Firmware
Sonicwall Sma 400 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v Firmware
NA
CVE-2022-2323
Improper neutralization of special elements used in a user input allows an authenticated malicious user to perform remote code execution in the host system. This vulnerability impacts SonicWall Switch 1.1.1.0-2s and previous versions versions
Sonicwall Sws12-10fpoe Firmware
Sonicwall Sws12-8 Firmware
Sonicwall Sws12-8poe Firmware
Sonicwall Sws14-24 Firmware
Sonicwall Sws14-24fpoe Firmware
Sonicwall Sws14-48 Firmware
Sonicwall Sws14-48fpoe Firmware
9
CVSSv2
CVE-2022-1703
Improper neutralization of special elements in the SonicWall SSL-VPN SMA100 series management interface allows a remote authenticated malicious user to inject OS Commands which potentially leads to remote command execution vulnerability or denial of service (DoS) attack.
Sonicwall Sma 210 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v Firmware
7.5
CVSSv2
CVE-2022-22282
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and previous versions versions incorrectly restricts access to a resource using HTTP connections from an unauthorized actor leading to Improper Access Control vulnerability.
Sonicwall Sma 6200 Firmware 12.4.0
Sonicwall Sma 6200 Firmware 12.4.1
Sonicwall Sma 6210 Firmware 12.4.0
Sonicwall Sma 6210 Firmware 12.4.1
Sonicwall Sma 7200 Firmware 12.4.0
Sonicwall Sma 7200 Firmware 12.4.1
Sonicwall Sma 7210 Firmware 12.4.0
Sonicwall Sma 7210 Firmware 12.4.1
Sonicwall Sma 8000v Firmware 12.4.0
Sonicwall Sma 8000v Firmware 12.4.1
5
CVSSv2
CVE-2022-1701
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and previous versions versions uses a shared and hard-coded encryption key to store data.
Sonicwall Sma 6200 Firmware 12.4.0
Sonicwall Sma 6200 Firmware 12.4.1
Sonicwall Sma 6210 Firmware 12.4.0
Sonicwall Sma 6210 Firmware 12.4.1
Sonicwall Sma 7200 Firmware 12.4.0
Sonicwall Sma 7200 Firmware 12.4.1
Sonicwall Sma 7210 Firmware 12.4.0
Sonicwall Sma 7210 Firmware 12.4.1
Sonicwall Sma 8000v Firmware 12.4.0
Sonicwall Sma 8000v Firmware 12.4.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »