Lucene search
+L

6 matches found

euvd
euvd
added 2026/04/09 3:35 p.m.7 views

EUVD-2026-20908

Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication...

7.1AI score0.00417EPSS
Exploits0References2
nessus
nessus
added 2025/12/17 12:0 a.m.3 views

SonicWall SMA 1000 Series <= 12.4.3-03093 / 12.5.x <= 12.5.0-02283 Local Privilege Escalation (SNWLID-2025-0019)

The remote host is a SonicWall SMA 1000 Series device that may be affected by a local privilege escalation vulnerability: - A local privilege escalation vulnerability due to insufficient authorization in the SonicWall SMA1000 appliance management console AMC. CVE-2025-40602 Note that Nessus has n...

6.6CVSS6.8AI score0.0191EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2022/05/12 12:0 a.m.8 views

PT-2022-2829 · Sonicwall · Sonicwall Sma1000

Name of the Vulnerable Software and Affected Versions: SonicWall SMA1000 series firmware versions prior to 12.4.1-02965 Description: The issue is related to insufficient access control in the firmware of SonicWall SMA 1000 series firewalls. This can allow a remote attacker to gain unauthorized...

9.8CVSS9.3AI score0.07375EPSS
Exploits0References7
nessus
nessus
added 2022/04/04 12:0 a.m.45 views

SonicWall Secure Mobile Access (SMA) SQLi (SNWLID-2021-0017)

The remote host is a SonicWall Secure Mobile Access SMA device that is affected by an SQL injection vulnerability due to improper neutralization of an SQL command. An unauthenticated, remote attacker can exploit this to run SQL commands. Note that Nessus has not tested for this issue but has...

9.8CVSS7.4AI score0.30084EPSS
Exploits0References2
nessus
nessus
added 2021/10/01 12:0 a.m.51 views

SonicWall Secure Mobile Access Arbitrary File Delete (SNWLID-2021-0021)

According to its self-reported version, the remote SonicWall Secure Mobile Access is affected by an arbitrary file delete vulnerability. An unauthenticated, remote attacker can exploit this to bypass authentication and delete arbitrary files. Note that Nessus has not tested for these issues but h...

9.1CVSS8.8AI score0.80701EPSS
Exploits4References3
nessus
nessus
added 2021/02/03 12:0 a.m.145 views

SonicWall Secure Mobile Access Remote Code Execution (SNWLID-2021-0001)

According to its self-reported version, the remote SonicWall Secure Mobile Access is affected by a remote code execution vulnerability. An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands. Note that Nessus has not tested for these issues bu...

9.8CVSS8.8AI score0.40038EPSS
Exploits0References3
Rows per page
Query Builder