CVE-2024-53703

CVE-2024-53703 affects SonicWall SMA100 SSLVPN firmware, specifically mod_httprp library loaded by Apache, causing a stack-based buffer overflow that can lead to remote code execution. Affected versions include 10.2.1.13-72sv and earlier; mitigation is to upgrade to the fixed release (e.g., 10.2....

CVE-2024-53703

A vulnerability in the SonicWall SMA100 SSLVPN firmware 10.2.1.13-72sv and earlier versions modhttprp library loaded by the Apache web server allows remote attackers to cause Stack-based buffer overflow and potentially lead to code execution...

CVE-2024-53702

Use of cryptographically weak pseudo-random number generator PRNG vulnerability in the SonicWall SMA100 SSLVPN backup code generator that, in certain cases, can be predicted by an attacker, potentially exposing the generated secret...

CVE-2024-53702

CVE-2024-53702 describes a cryptographically weak PRNG issue in the SonicWall SMA100 SSLVPN backup code generator, allowing an attacker to potentially predict the generated secret. Affected product: SonicWall SMA100 SSLVPN (backup code generator). Root cause: use of a weak PRNG. Impact: potential...

CVE-2024-53702

Use of cryptographically weak pseudo-random number generator PRNG vulnerability in the SonicWall SMA100 SSLVPN backup code generator that, in certain cases, can be predicted by an attacker, potentially exposing the generated secret...

CVE-2024-45319

A vulnerability in the SonicWall SMA100 SSLVPN firmware 10.2.1.13-72sv and earlier versions allows a remote authenticated attacker can circumvent the certificate requirement during authentication...

CVE-2024-45319

A vulnerability in the SonicWall SMA100 SSLVPN firmware 10.2.1.13-72sv and earlier versions allows a remote authenticated attacker can circumvent the certificate requirement during authentication...

CVE-2024-45319

The CVE-2024-45319 entry concerns SonicWall SMA100 SSLVPN. Affects firmware 10.2.1.13-72sv and earlier. The vulnerability allows a remote authenticated attacker to bypass the certificate requirement during authentication, potentially leading to unauthorized access. The SonicWall SNWLID-2024-0018 ...

CVE-2024-45318

CVE-2024-45318 affects SonicWall SMA100 SSLVPN web management interface. A stack-based buffer overflow vulnerability in this component can lead to remote code execution. Public documents confirm this issue alongside related flaws (e.g., CVE-2024-40763, CVE-2024-53703) within the SMA100/SMA200 fam...

CVE-2024-45318

A vulnerability in the SonicWall SMA100 SSLVPN web management interface allows remote attackers to cause Stack-based buffer overflow and potentially lead to code execution...

CVE-2024-45318

A vulnerability in the SonicWall SMA100 SSLVPN web management interface allows remote attackers to cause Stack-based buffer overflow and potentially lead to code execution...

CVE-2024-40763

Heap-based buffer overflow vulnerability in the SonicWall SMA100 SSLVPN due to the use of strcpy. This allows remote authenticated attackers to cause Heap-based buffer overflow and potentially lead to code execution...

CVE-2024-40763

Heap-based buffer overflow vulnerability in the SonicWall SMA100 SSLVPN due to the use of strcpy. This allows remote authenticated attackers to cause Heap-based buffer overflow and potentially lead to code execution...

CVE-2024-40763

CVE-2024-40763 affects SonicWall SMA100 SSLVPN. The issue is a heap-based buffer overflow caused by the use of strcpy in the SMA100, allowing remote authenticated attackers to potentially execute code. Nessus/NCSC references corroborate multiple related vulnerabilities and identify the SMA200/210...

Fortinet Fortigate SSLVPN WEB UI Text injection (FG-IR-24-033)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-033 advisory. - An improper neutralization of special elements in output used by a downstream component 'Injection' vulnerability CWE-74 in...

Fortinet Fortigate - SSLVPN session hijacking using SAML authentication (FG-IR-23-475)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-475 advisory. - A session fixation in Fortinet FortiOS version 7.4.0 through 7.4.3 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.13 allows...

Fortinet FortiClient stores the SSLVPN password in cleartext (FG-IR-22-246) (macOS)

The version of FortiClient installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-246 advisory. - An exposure of sensitive information to an unauthorized actor vulnerabiltiy CWE-200 in FortiClient for Mac versions 7.0.0...

Fortinet Fortigate Integer overflow in SSLVPN allocator (FG-IR-21-049)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-049 advisory. - An integer overflow or wraparound vulnerability in the memory allocator of SSLVPN in FortiOS before 7.0.1 may allow an...

Fortinet Fortigate Hardcoded SSLVPN cookie encryption key (FG-IR-21-051)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-051 advisory. - A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may allow an attacker to retrieve...

CVE-2024-40766: Critical Improper Access Control Vulnerability Affecting SonicWall Devices

On August 22, 2024, security firm SonicWall published an advisory on CVE-2024-40766, a critical improper access control vulnerability affecting SonicOS, the operating system that runs on the company’s physical and virtual firewalls. While CVE-2024-40766 was not known to be exploited in the wild a...