sonicwall

250 tracked vulnerabilities.

CVE-2023-41713 HIGH
SonicOS < 7.0.1-5145 - Use of Hard-coded Password in dynHandleBuyToolbar Demo Function
Oct 17, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-41712 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-Based Buffer Overflow via SSL VPN plainprefs.exp URL Endpoint
Oct 17, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-41711 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-Based Buffer Overflow via sonicwall.exp and prefs.exp Endpoints
Oct 17, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-39280 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-Based Buffer Overflow via SSO Stats Endpoints
Oct 17, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-39279 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-Based Buffer Overflow via getPacketReplayData.json Endpoint
Oct 17, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-39278 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-Based Buffer Overflow via main.cgi
Oct 17, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-39277 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-based Buffer Overflow via sonicflow.csv and appflowsessions.csv Endpoints
Oct 17, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-39276 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-based Buffer Overflow via getBookmarkList.json Endpoint
Oct 17, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-44218 HIGH
SonicWall NetExtender < 10.2.336 - Unauthenticated Local Privilege Escalation via Pre-Logon Feature
Oct 03, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-44217 HIGH
SonicWall NetExtender < 10.2.336 - Local Privilege Escalation via MSI Repair Functionality
Oct 03, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-34137 CRITICAL
SonicWall GMS <9.3.2-SP1 & Analytics <2.5.0.4-R7 - Auth Bypass
Jul 13, 2023
CVSS 9.8
EPSS 0.00
CVE-2023-34136 CRITICAL
SonicWall GMS & Analytics <9.3.2-SP1 - Unauthenticated File Upload
Jul 13, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-34135 MEDIUM
SonicWall GMS & Analytics <9.3.2-SP1 - Path Traversal
Jul 13, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-34134 MEDIUM
SonicWall GMS & Analytics <9.3.2-SP1 - Info Disclosure
Jul 13, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-34133 HIGH NUCLEI
Sonicwall
Jul 13, 2023
CVSS 7.5
EPSS 0.64
CVE-2023-34132 CRITICAL
SonicWall GMS <9.3.2-SP1, Analytics <2.5.0.4-R7 - Auth Bypass
Jul 13, 2023
CVSS 9.8
EPSS 0.70
CVE-2023-34131 MEDIUM
SonicWall GMS <9.3.2-SP1 & Analytics <2.5.0.4-R7 - Info Disclosure
Jul 13, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-34130 CRITICAL
SonicWall GMS <9.3.2-SP1 & Analytics <2.5.0.4-R7 - Info Disclosure
Jul 13, 2023
CVSS 9.8
EPSS 0.00
CVE-2023-34129 HIGH
SonicWall GMS <9.3.2-SP1, Analytics <2.5.0.4-R7 - Path Traversal
Jul 13, 2023
CVSS 8.8
EPSS 0.31
CVE-2023-34128 CRITICAL
SonicWall GMS <9.3.2-SP1 & Analytics <2.5.0.4-R7 - Info Disclosure
Jul 13, 2023
CVSS 9.8
EPSS 0.00
CVE-2023-34127 HIGH
SonicWall GMS <9.3.2-SP1, Analytics <2.5.0.4-R7 - Command Injection
Jul 13, 2023
CVSS 8.8
EPSS 0.91
CVE-2023-34126 HIGH
SonicWall Analytics < 2.5.0.4-r7 and Global Management System < 9.3.2 - Authenticated Arbitrary File Upload
Jul 13, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-34125 MEDIUM
GMS <9.3.2-SP1 & Analytics <2.5.0.4-R7 - Path Traversal
Jul 13, 2023
CVSS 6.5
EPSS 0.12
CVE-2023-34124 CRITICAL NUCLEI
SonicWall GMS <9.3.2-SP1 & Analytics <2.5.0.4-R7 - Auth Bypass
Jul 13, 2023
CVSS 9.8
EPSS 0.91
CVE-2023-34123 HIGH
SonicWall GMS <9.3.2-SP1 - Info Disclosure
Jul 13, 2023
CVSS 7.5
EPSS 0.00
Products
sonicos 68 sma_210_firmware 35 sma_410_firmware 35 global_management_system 32 sma_500v_firmware 32 sma_200_firmware 27 sma_400_firmware 27 sonicosv 19 analytics 17 SonicOS 14 sma_100_firmware 13 email_security 12 analyzer 10 netextender 9 scrutinizer 7 SMA1000 6 global_vpn_client 6 sma6200_firmware 6 sma6210_firmware 6 sma7200_firmware 6 sma7210_firmware 6 sma8200v 6 email_security_appliance_5000_firmware 5 email_security_appliance_5050_firmware 5 email_security_appliance_7000_firmware 5 email_security_appliance_7050_firmware 5 email_security_appliance_9000_firmware 5 sma1000_firmware 5 sma100_firmware 5 Email Security 4
Quick Filters
Critical CVEs With Exploits In CISA KEV