CVE-2019-7482

CRITICAL

SonicWall SMA100 <9.0.0.3 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2019-7482. PoCs published by w0lfzhang, b4bay.

AI-analyzed exploit summary This PoC exploits a stack-based buffer overflow in SonicWall (CVE-2019-7482) to achieve remote code execution via a crafted User-Agent header. It brute-forces libc addresses to bypass ASLR and spawns a reverse shell.

Description

Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.

Exploits (2)

nomisec WORKING POC 4 stars

by w0lfzhang · poc

https://github.com/w0lfzhang/sonicwall-cve-2019-7482

View Code ZIP pw:eip

This PoC exploits a stack-based buffer overflow in SonicWall (CVE-2019-7482) to achieve remote code execution via a crafted User-Agent header. It brute-forces libc addresses to bypass ASLR and spawns a reverse shell.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Racy

Target: SonicWall (unspecified version)

No auth needed

Prerequisites: Network access to target · Target running vulnerable SonicWall firmware

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WRITEUP 3 stars

by b4bay · poc

https://github.com/b4bay/CVE-2019-7482

View Code ZIP pw:eip

This repository contains a detailed writeup about CVE-2019-7482, a critical vulnerability in SonicWall SMA/SRA appliances. It includes vulnerability details, affected versions, and detection guidance but does not contain exploit code.

Classification

Writeup 100%

Attack Type

Other

Complexity

Moderate

Reliability

Theoretical

Target: SonicWall SMA/SRA appliances (9.0.0.3 and earlier)

No auth needed

Prerequisites: Network access to vulnerable SonicWall SMA/SRA appliance

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0017

Scores

CVSS v3 9.8

EPSS 0.0882

EPSS Percentile 94.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-121 CWE-787

Status published

Products (1)

sonicwall/sma_100_firmware < 9.0.0.3

Published Dec 19, 2019

Tracked Since Feb 18, 2026