Lucene search
SonicwallCVELIST:CVE-2018-9867HistoryFeb 19, 2019 - 9:00 p.m.
CVE-2018-9867
2019-02-1921:00:00
CWE-285
sonicwall
www.cve.org
1
0.0004 Low
EPSS
Percentile
12.6%
In SonicWall SonicOS, administrators without full permissions can download imported certificates. Occurs when administrators who are not in the SonicWall Administrators user group attempt to download imported certificates. This vulnerability affected SonicOS Gen 5 version 5.9.1.10 and earlier, Gen 6 version 6.2.7.3, 6.5.1.3, 6.5.2.2, 6.5.3.1, 6.2.7.8, 6.4.0.0, 6.5.1.8, 6.0.5.3-86o and SonicOSv 6.5.0.2-8v_RC363 (VMWARE), 6.5.0.2.8v_RC367 (AZURE), SonicOSv 6.5.0.2.8v_RC368 (AWS), SonicOSv 6.5.0.2.8v_RC366 (HYPER_V).
CNA Affected
[
{
"product": "SonicOS",
"vendor": "SonicWall",
"versions": [
{
"status": "affected",
"version": "5.9.1.10 and earlier"
},
{
"status": "affected",
"version": "6.2.7.3"
},
{
"status": "affected",
"version": "6.5.1.3"
},
{
"status": "affected",
"version": "6.5.2.2"
},
{
"status": "affected",
"version": "6.5.3.1"
},
{
"status": "affected",
"version": "6.2.7.8"
},
{
"status": "affected",
"version": "6.4.0.0"
},
{
"status": "affected",
"version": "6.5.1.8"
},
{
"status": "affected",
"version": "6.0.5.3-86o"
}
]
},
{
"product": "SonicOSv",
"vendor": "SonicWall",
"versions": [
{
"status": "affected",
"version": "6.5.0.2-8v_RC363 (VMWARE)"
},
{
"status": "affected",
"version": "6.5.0.2.8v_RC367 (AZURE)"
},
{
"status": "affected",
"version": "6.5.0.2.8v_RC368 (AWS)"
},
{
"status": "affected",
"version": "6.5.0.2.8v_RC366 (HYPER_V)"
}
]
}
]Related
nvd
nvd
CVE-2018-9867
2019-02-19 21:29:00
cve
cve
CVE-2018-9867
2019-02-19 21:29:00
prion
prion
Design/Logic Flaw
2019-02-19 21:29:00