CVE-2025-32819

CVE-2025-32819 affects SonicWall SMA100 series appliances. A remote, authenticated SSLVPN user can bypass path-traversal checks to delete arbitrary files, potentially rebooting the device to factory defaults. The vulnerability is fixed in SMA100 firmware 10.2.1.15-81sv (patch released May 2025). ...

CVE-2025-32819

A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to factory default settings...

PT-2025-20282 · Sma100 · Sma100

Name of the Vulnerable Software and Affected Versions: SMA100 versions 10.2.1.14-75sv and earlier Description: A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges to inject a path traversal sequence, making any directory on the SMA appliance writable...

PT-2025-20283 · Sma100 · Sma100

Name of the Vulnerable Software and Affected Versions: SMA100 affected versions not specified Description: A remote authenticated attacker with SSLVPN admin privileges can inject shell command arguments to upload a file on the appliance. Recommendations: At the moment, there is no information abo...

CVE-2025-32818

A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker to crash the firewall, potentially leading to a Denial-of-Service DoS condition...

CVE-2025-32818

A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker to crash the firewall, potentially leading to a Denial-of-Service DoS condition...

CVE-2025-32818

A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker to crash the firewall, potentially leading to a Denial-of-Service DoS condition...

CVE-2025-32818

A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker to crash the firewall, potentially leading to a Denial-of-Service DoS condition...

CVE-2025-32818

The CVE-2025-32818 entry describes a Null Pointer Dereference in the SonicOS SSLVPN Virtual Office interface that allows a remote, unauthenticated attacker to crash the firewall, potentially causing a Denial-of-Service (DoS). Affected product: SonicOS SSLVPN Virtual Office. Root cause: dereferenc...

SonicOS SSLVPN NULL Pointer Dereference Denial-of-Service (DoS) Vulnerability

A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker to crash the firewall, potentially leading to a Denial-of-Service DoS condition. CVE: CVE-2025-32818 Last updated: April 23, 2025, 6:49 p.m...

SonicWall SonicOS SSLVPN Authentication Bypass

SonicWall SonicOS SSLVPN versions 7.1.1-7040 prior to 7.1.3-7015 and version 7.1.2-7019 are vulnerable to authentication bypass via a specially forged request that allows to hijack active SSL VPN sessions and gain unauthorized network access. No source data...

CISA Adds Palo Alto Networks and SonicWall Flaws to Exploited Vulnerabilities List

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Tuesday added two security flaws impacting Palo Alto Networks PAN-OS and SonicWall SonicOS SSLVPN to its Known Exploited Vulnerabilities KEV catalog, based on evidence of active exploitation. The flaws are listed below -...

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-0108link is external Palo Alto PAN-OS Authentication Bypass Vulnerability CVE-2024-53704link is external SonicWall SonicOS SSLVPN Improper Authentication...

SonicWall SonicOS SSLVPN Improper Authentication Vulnerability

SonicWall SonicOS contains an improper authentication vulnerability in the SSLVPN authentication mechanism that allows a remote attacker to bypass authentication...

CVE-2021-26109

An integer overflow or wraparound vulnerability in the memory allocator of SSLVPN in FortiOS before 7.0.1 may allow an unauthenticated attacker to corrupt control data on the heap via specifically crafted requests to SSLVPN, resulting in potentially arbitrary code execution...

CVE-2021-26108

A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may allow an attacker to retrieve the key by reverse engineering...

CVE-2022-29055

A access of uninitialized pointer in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0 through 6.4.8, 6.2.0 through 6.2.10, 6.0.x, FortiProxy version 7.0.0 through 7.0.4, 2.0.0 through 2.0.9, 1.2.x allows a remote unauthenticated or authenticated attacker to crash the sslvpn daemon via a...

CVE-2024-36504

An out-of-bounds read vulnerability CWE-125 in FortiOS SSLVPN web portal versions 7.4.0 through 7.4.4, versions 7.2.0 through 7.2.8, 7.0 all verisons, and 6.4 all versions may allow an authenticated attacker to perform a denial of service on the SSLVPN web portal via a specially crafted URL...

CVE-2024-36504

CVE-2024-36504 describes an out-of-bounds read (CWE-125) in the FortiOS SSLVPN web portal. An authenticated attacker can cause a denial of service by sending a specially crafted URL. Affected are FortiOS SSLVPN web portal versions: 7.4.0–7.4.4, 7.2.0–7.2.8, 7.0 (all versions), and 6.4 (all versio...

CVE-2024-36504

An out-of-bounds read vulnerability CWE-125 in FortiOS SSLVPN web portal versions 7.4.0 through 7.4.4, versions 7.2.0 through 7.2.8, 7.0 all verisons, and 6.4 all versions may allow an authenticated attacker to perform a denial of service on the SSLVPN web portal via a specially crafted URL...