CVE-2019-7479

🗓️ 31 Dec 2019 01:30:14Reported by sonicwallType

A SonicOS vulnerability allows read-only admin to elevate permissions for configuration mode

Reporter	Title	Published	Views	Family All 8
CNVD	SonicOS Elevation of Privilege Vulnerability	31 Dec 201900:00	–	cnvd
CVE	CVE-2019-7479	31 Dec 201901:30	–	cve
EUVD	EUVD-2019-17021	7 Oct 202500:30	–	euvd
NVD	CVE-2019-7479	31 Dec 201902:15	–	nvd
OSV	CVE-2019-7479	31 Dec 201902:15	–	osv
Prion	Design/Logic Flaw	31 Dec 201902:15	–	prion
RedhatCVE	CVE-2019-7479	22 May 202508:50	–	redhatcve
SonicWall	SonicOS and SonicOSv Read-only Admin Can Elevate to Config Mode	30 Dec 201920:00	–	sonicwall

[
  {
    "product": "SonicOS",
    "vendor": "SonicWall",
    "versions": [
      {
        "status": "affected",
        "version": "5.9.1.12-4o"
      },
      {
        "status": "affected",
        "version": "6.2.7.4-32n"
      },
      {
        "status": "affected",
        "version": "6.5.1.4-4n"
      },
      {
        "status": "affected",
        "version": "6.5.2.3-4n"
      },
      {
        "status": "affected",
        "version": "6.5.3.3-3n"
      },
      {
        "status": "affected",
        "version": "6.2.7.10-3n"
      },
      {
        "status": "affected",
        "version": "6.4.1.0-3n"
      },
      {
        "status": "affected",
        "version": "6.5.1.9-4n"
      }
    ]
  },
  {
    "product": "SonicOSv",
    "vendor": "SonicWall",
    "versions": [
      {
        "status": "affected",
        "version": "6.5.0.2-8v_RC363 (VMWARE)"
      },
      {
        "status": "affected",
        "version": "6.5.0.2.8v_RC367 (AZURE)"
      },
      {
        "status": "affected",
        "version": "6.5.0.2.8v_RC368 (AWS)"
      },
      {
        "status": "affected",
        "version": "6.5.0.2.8v_RC366 (HYPER_V)"
      }
    ]
  }
]

Source	Link
psirt	www.psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0012

31 Dec 2019 01:30Current

6.9Medium risk

Vulners AI Score6.9

EPSS0.00924

CWE-285