CVE-2019-7488

CRITICAL

SonicWall Email Security <10.0.2 - Info Disclosure

Title source: llm

Description

Weak default password cause vulnerability in SonicWall Email Security appliance which leads to attacker gain access to appliance database. This vulnerability affected Email Security Appliance version 10.0.2 and earlier.

References (1)

[Vendor Advisory] https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0014

Scores

CVSS v3 9.8

EPSS 0.0050

EPSS Percentile 66.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-521 CWE-255

Status published

Products (1)

sonicwall/email_security_appliance < 10.0.2

Published Dec 23, 2019

Tracked Since Feb 18, 2026