Lucene search
K

745 matches found

NVD
NVD
added 2026/02/24 3:21 p.m.4 views

CVE-2026-0399

Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint...

4.9CVSS0.00322EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/24 2:55 p.m.4 views

CVE-2026-0401

A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to crash a firewall...

5.4AI score0.00342EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/24 2:55 p.m.19 views

CVE-2026-0401

A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to crash a firewall...

0.00342EPSS
Exploits0References1
CVE
CVE
added 2026/02/24 2:55 p.m.13 views

CVE-2026-0401

The provided documents identify CVE-2026-0401 as a post-authentication NULL Pointer Dereference in SonicOS that allows a remote attacker to crash a firewall. Affected software is SonicOS; the underlying cause is a NULL pointer dereference. The sources do not specify vulnerable versions, impacted ...

4.9CVSS5.5AI score0.00342EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/02/24 2:54 p.m.26 views

CVE-2026-0400

The CVE-2026-0400 entry concerns SonicOS and is a post-authentication Format String vulnerability that can cause a firewall to crash. Affected software is SonicOS (no version details provided). Root cause: improper handling of format strings in the affected component, leading to denial of service...

4.9CVSS5.5AI score0.00425EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/24 2:54 p.m.5 views

CVE-2026-0400

A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a firewall...

5.5AI score0.00425EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/24 2:54 p.m.20 views

CVE-2026-0400

A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a firewall...

0.00425EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/24 2:52 p.m.16 views

CVE-2026-0399

Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint...

0.00322EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/24 2:52 p.m.4 views

CVE-2026-0399

Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint...

5.8AI score0.00322EPSS
Exploits0References1
CVE
CVE
added 2026/02/24 2:52 p.m.25 views

CVE-2026-0399

Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface caused by improper bounds checking in an API endpoint. Affected: SonicOS management interface. Root cause: bounds checking flaw leading to stack overflow after authentication. Impact: pote...

4.9CVSS5.8AI score0.00322EPSS
Exploits0References1Affected Software1
SonicWall
SonicWall
added 2026/02/24 11:46 a.m.32 views

SonicOS multiple post-authentication vulnerabilities

1 CVE-2026-0399 - Multiple SonicOS post-authentication Stack-based Buffer Overflow vulnerabilitiesMultiple post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall.CVSS Score: 4.9 CVSS Vector:...

4.9CVSS5.9AI score0.00425EPSS
Exploits0
NVD
NVD
added 2026/02/24 3:16 a.m.9 views

CVE-2025-13943

A post-authentication command injection vulnerability in the log file download function of the Zyxel EX3301-T0 firmware versions through 5.50ABVY.7C0 could allow an authenticated attacker to execute operating system OS commands on an affected device...

8.8CVSS0.01398EPSS
Exploits0References1
NVD
NVD
added 2026/02/24 3:16 a.m.13 views

CVE-2026-1459

A post-authentication command injection vulnerability in the TR-369 certificate download CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50ABPM.9.7C0 could allow an authenticated attacker with administrator privileges to execute operating system OS commands on an affected device...

7.2CVSS0.00902EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/02/24 2:48 a.m.3 views

CVE-2026-1459

A post-authentication command injection vulnerability in the TR-369 certificate download CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50ABPM.9.7C0 could allow an authenticated attacker with administrator privileges to execute operating system OS commands on an affected device...

7.2CVSS5.8AI score0.00902EPSS
Exploits1References1
EUVD
EUVD
added 2026/02/24 2:48 a.m.5 views

EUVD-2026-7399

A post-authentication command injection vulnerability in the TR-369 certificate download CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50ABPM.9.7C0 could allow an authenticated attacker with administrator privileges to execute operating system OS commands on an affected device...

7.2CVSS5.8AI score0.00902EPSS
Exploits1References1
CVE
CVE
added 2026/02/24 2:48 a.m.19 views

CVE-2026-1459

CVE-2026-1459 describes a post-authentication command-injection vulnerability in Zyxel VMG3625-T50B devices, affecting firmware up to 5.50(ABPM.9.7)C0. The issue is in the TR-369 certificate download CGI program; an authenticated administrator can execute OS commands on the device. Metrics indica...

7.2CVSS5.8AI score0.00902EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.10 views

PT-2026-21644

Name of the Vulnerable Software and Affected Versions Zyxel EX3301-T0 firmware versions through 5.50ABVY.7C0 Description A post-authentication command injection issue exists in the log file download function. This could allow an authenticated attacker to execute operating system OS commands on an...

8.8CVSS5.6AI score0.01398EPSS
Exploits0References18
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.5 views

PT-2026-21747

Name of the Vulnerable Software and Affected Versions SonicOS affected versions not specified Description A post-authentication NULL Pointer Dereference issue exists in SonicOS. This can allow a remote attacker to crash a firewall. Recommendations At the moment, there is no information about a...

4.9CVSS5.3AI score0.00342EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.5 views

PT-2026-21745

Name of the Vulnerable Software and Affected Versions SonicOS affected versions not specified Description The software contains post-authentication stack-based buffer overflow vulnerabilities within its management interface. These issues stem from insufficient bounds checking in an ''API...

4.9CVSS5.7AI score0.00322EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.11 views

PT-2026-21645

Name of the Vulnerable Software and Affected Versions Zyxel VMG3625-T50B firmware versions through 5.50ABPM.9.7C0 Description A post-authentication command injection exists in the TR-369 certificate download CGI program. An authenticated attacker with administrator privileges could execute...

7.2CVSS5.5AI score0.00902EPSS
Exploits1References15
Rows per page
Query Builder