Lucene search
K

8 matches found

OSV
OSV
added 2025/07/23 3:15 p.m.10 views

CVE-2025-40597

A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service DoS or potentially results in code execution...

7.5CVSS6.1AI score0.27599EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/23 2:46 p.m.5 views

CVE-2025-40596

A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service DoS or potentially results in code execution...

7.3CVSS6.1AI score0.56063EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/05 12:0 a.m.5 views

PT-2024-35812 · Sonicwall +1 · Sonicwall Sma100 Sslvpn +1

Name of the Vulnerable Software and Affected Versions: SonicWall SMA100 SSLVPN versions 10.2.1.13-72sv and earlier Description: A problem in the mod httprp library loaded by the Apache web server allows remote attackers to cause a stack-based buffer overflow, potentially leading to code execution...

8.1CVSS9.9AI score0.12713EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/12/03 12:0 a.m.6 views

PT-2024-9236 · Sonicwall · Sonicwall Sma100 Sslvpn

Name of the Vulnerable Software and Affected Versions: SonicWall SMA100 SSLVPN versions prior to 10.2.1.13-72sv Description: The issue is related to a heap-based buffer overflow vulnerability in the SonicWall SMA100 SSLVPN, caused by the use of strcpy. This allows remote authenticated attackers t...

7.5CVSS9.7AI score0.0095EPSS
Exploits0References7
OSV
OSV
added 2022/04/13 6:15 a.m.4 views

CVE-2022-22279

A post-authentication arbitrary file read vulnerability impacting end-of-life Secure Remote Access SRA products and older firmware versions of Secure Mobile Access SMA 100 series products, specifically the SRA appliances running all 8.x, 9.0.0.5-19sv and earlier versions and Secure Mobile Access...

4.9CVSS5.9AI score0.01068EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/03/17 12:0 a.m.7 views

SonicWall SSLVPN 操作系统命令注入漏洞

SonicWALL SSLVPN is a transparent software application for Windows and Linux users from SonicWALL USA. It enables remote users to securely connect to the corporate network. An operating system command injection vulnerability exists in SonicWall SSLVPN and affects the following products and...

9.8CVSS7.6AI score0.01906EPSS
Exploits0References3
NCSC
NCSC
added 2021/12/22 12:0 a.m.7 views

Vulnerability fixed in SonicWall SMA100 series

A vulnerability has been fixed in SonicWall SMA100 series. The vulnerability allows an unauthenticated remote malicious person able to access some management APIs in order to view meta-data of configurations. SonicWall has released updates to fix the vulnerability. fix. More information can be...

7.5CVSS6.7AI score0.00904EPSS
Exploits0
CNNVD
CNNVD
added 2021/03/12 12:0 a.m.5 views

Sonicwall SMA100 操作系统命令注入漏洞

The SonicWall SMA100 is a secure access gateway appliance from SonicWALL USA. An operating system command injection vulnerability exists in SonicWall SMA100 version 10.2.0.5 and earlier versions, which can be exploited by an authenticated attacker to execute operating system commands on the targe...

9CVSS6AI score0.01849EPSS
Exploits0References2
Rows per page
Query Builder