sonicwall

250 tracked vulnerabilities.

CVE-2025-40595 HIGH
SMA1000 Appliance Work Place - SSRF
May 14, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-32821 HIGH
SonicWall SMA 100/200/210/400/410/500v Firmware < 10.2.1.15-81sv - Authenticated OS Command Injection via File Upload
May 07, 2025
CVSS 7.2
EPSS 0.01
CVE-2025-32820 HIGH
SonicWall SMA 100/200/210/400/410/500v Firmware < 10.2.1.15-81sv - Authenticated Path Traversal
May 07, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-32819 HIGH
SonicWall SMA 100/200/210/400/410/500v < 10.2.1.15-81sv Authenticated Arbitrary File Deletion
May 07, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-2170 HIGH
SonicWall SMA1000 Firmware < 12.4.3-02925 - Unauthenticated Server-Side Request Forgery
Apr 30, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-32818 HIGH
SonicOS 7.1.1-7040-7.1.3-7015 and 8.0.0-8037 - Unauthenticated Denial of Service via SSLVPN Virtual Office Interface
Apr 23, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-32817 MEDIUM
SonicWall Connect Tunnel - Path Traversal
Apr 16, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-23010 HIGH
SonicWall NetExtender - Path Traversal
Apr 10, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-23009 HIGH
SonicWall NetExtender - Privilege Escalation
Apr 10, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-23008 HIGH
SonicWall NetExtender - Privilege Escalation
Apr 10, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-23007 MEDIUM
SonicWall NetExtender - Privilege Escalation via Log Export Function
Jan 30, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-23006 CRITICAL KEV
SonicWall SMA/SRA < 12.4.3 - Unauthenticated RCE via Deserialization
Jan 23, 2025
CVSS 9.8
EPSS 0.50
CVE-2024-12802 CRITICAL
SonicOS Authentication Bypass via UPN/SAM Account Name Handling
Jan 09, 2025
CVSS 9.1
EPSS 0.00
CVE-2024-40765 CRITICAL
SonicOS < 6.5.4.4-44v-21-2395, < 7.0.1-5151, < 7.1.1-7051 - DoS & RCE via IKEv2 Payload
Jan 09, 2025
CVSS 9.8
EPSS 0.02
CVE-2024-12806 MEDIUM
SonicOS < 6.5.4.15-117n, < 7.0.1-5161, < 7.1.2-7019, < 8.0.0-8035 - Authenticated Path Traversal
Jan 09, 2025
CVSS 4.9
EPSS 0.00
CVE-2024-12805 HIGH
SonicOS < 6.5.4.15-117n, < 7.0.1-5161, < 7.1.2-7019, < 8.0.0-8035 - Authenticated Format String Vulnerability
Jan 09, 2025
CVSS 7.2
EPSS 0.01
CVE-2024-12803 HIGH
SonicOS < 6.5.4.15-117n, < 7.0.1-5161, < 7.1.2-7019, < 8.0.0-8035 - Authenticated Stack-based Buffer Overflow
Jan 09, 2025
CVSS 7.2
EPSS 0.02
CVE-2024-53706 HIGH
Gen7 SonicOS Cloud - Privilege Escalation
Jan 09, 2025
CVSS 7.8
EPSS 0.00
CVE-2024-53705 HIGH
SonicWall SonicOS SSH Management - Server-Side Request Forgery
Jan 09, 2025
CVSS 7.5
EPSS 0.00
CVE-2024-53704 CRITICAL KEVNUCLEI
SonicOS >=7.1.1-7040 <7.1.1-7058 - Unauthenticated Authentication Bypass via SSLVPN
Jan 09, 2025
CVSS 9.8
EPSS 0.94
CVE-2024-40762 CRITICAL
SonicOS < 7.1.1-7058, 7.1.2-7019, 8.0.0-8035 - Authentication Bypass via Weak PRNG in SSLVPN Token Generator
Jan 09, 2025
CVSS 9.8
EPSS 0.00
CVE-2024-53703 HIGH
SonicWall SMA100 SSLVPN Firmware < 10.2.1.14-75sv - Stack-based Buffer Overflow in mod_httprp Library
Dec 05, 2024
CVSS 8.1
EPSS 0.29
CVE-2024-53702 MEDIUM
SonicWall SMA 200/210/400/410/500v < 10.2.1.14-75sv - Weak PRNG in SSLVPN Backup Code
Dec 05, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-45319 MEDIUM
SonicWall SMA100 SSLVPN <10.2.1.13-72sv - Auth Bypass
Dec 05, 2024
CVSS 6.3
EPSS 0.01
CVE-2024-45318 HIGH
SonicWall SMA100 Firmware < 10.2.1.14-75sv - Stack-based Buffer Overflow
Dec 05, 2024
CVSS 8.1
EPSS 0.03
Products
sonicos 68 sma_210_firmware 35 sma_410_firmware 35 global_management_system 32 sma_500v_firmware 32 sma_200_firmware 27 sma_400_firmware 27 sonicosv 19 analytics 17 SonicOS 14 sma_100_firmware 13 email_security 12 analyzer 10 netextender 9 scrutinizer 7 SMA1000 6 global_vpn_client 6 sma6200_firmware 6 sma6210_firmware 6 sma7200_firmware 6 sma7210_firmware 6 sma8200v 6 email_security_appliance_5000_firmware 5 email_security_appliance_5050_firmware 5 email_security_appliance_7000_firmware 5 email_security_appliance_7050_firmware 5 email_security_appliance_9000_firmware 5 sma1000_firmware 5 sma100_firmware 5 Email Security 4
Quick Filters
Critical CVEs With Exploits In CISA KEV