33 matches found
Exploit for Race Condition in Sonicwall Sma_6200_Firmware
CVE-2024-6387 CVE-2024-6387 POC Currently being edited...
CVE-2026-4112
Improper neutralization of special elements used in an SQL command “SQL Injection” in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator...
VulnCheck KEV: CVE-2025-40602
A local privilege escalation vulnerability due to insufficient authorization in the SonicWall SMA1000 appliance management console AMC...
ThreatsDay Bulletin: Rootkit Patch, Federal Breach, OnePlus SMS Leak, TikTok Scandal & More
Welcome to this week's Threatsday Bulletin —your Thursday check-in on the latest twists and turns in cybersecurity and hacking. The digital threat landscape never stands still. One week it's a critical zero-day, the next it's a wave of phishing lures or a state-backed disinformation push. Each...
SonicWall SMA100 Post-authentication Arbitrary File Upload vulnerability
An authenticated arbitrary file upload vulnerability exists in the SMA 100 series web management interface. A remote attacker with administrative privileges can exploit this flaw to upload arbitrary files to the system, potentially leading to remote code execution. SonicWall strongly recommends...
SonicWall SMA 100 Series 跨站脚本漏洞
SonicWall SMA 100 Series is a series of remote access software from SonicWall Corporation. A cross-site scripting vulnerability exists in SonicWall SMA 100 Series that originates from reflective cross-site scripting and could lead to arbitrary JavaScript code execution...
PT-2025-30578 · Unknown · Sma 100 Series
Name of the Vulnerable Software and Affected Versions: SonicWall SMA 100 Series versions 210, 410, and 500v SonicWall SMA 100 Series affected versions not specified Description: A critical authenticated arbitrary file upload vulnerability exists in the SonicWall SMA 100 series web management...
UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit
A threat activity cluster has been observed targeting fully-patched end-of-life SonicWall Secure Mobile Access SMA 100 series appliances as part of a campaign designed to drop a backdoor called OVERSTEP. The malicious activity, dating back to at least October 2024, has been attributed by the Goog...
SonicWall SMA 1000 Series < 12.4.3-02963 SSRF (SNWLID-2025-0010)
The remote host is a SonicWall SMA 1000 Series device that may be affected by a server-side request forgery SSRF vulnerability. An SSRF vulnerability has been identified in the SMA1000 Appliance Work Place interface. By using an encoded URL, a remote unauthenticated attacker could potentially cau...
SonicWall SMA < 10.2.1.14-75sv Unauthenticated Arbitrary File Read
SonicWall Secure Mobile Access SMA versions prior to 10.2.1.14-75sv are affected by an unauthenticated arbitrary file read vulnerability. This vulnerability allows an unauthenticated attacker to read arbitrary files on the system, potentially leading to sensitive information disclosure. No source...
Multiple vulnerabilities in SonicWall SMA 100 series (FIXED)
Overview In April of 2025, Rapid7 discovered and disclosed three new vulnerabilities affecting SonicWall Secure Mobile Access “SMA” 100 series appliances SMA 200, 210, 400, 410, 500v. These vulnerabilities are tracked as CVE-2025-32819, CVE-2025-32820, and CVE-2025-32821. An attacker with access ...
Multiple vulnerabilities in SonicWall SMA 100 series (FIXED)
Overview In April of 2025, Rapid7 discovered and disclosed three new vulnerabilities affecting SonicWall Secure Mobile Access “SMA” 100 series appliances SMA 200, 210, 400, 410, 500v. These vulnerabilities are tracked as CVE-2025-32819, CVE-2025-32820, and CVE-2025-32821. An attacker with access ...
About Remote Code Execution & Arbitrary File Reading – Apache HTTP Server (CVE-2024-38475) vulnerability
About Remote Code Execution & Arbitrary File Reading - Apache HTTP Server CVE-2024-38475 vulnerability. Improper escaping of output in modrewrite module leads to remote code execution or arbitrary file reading. Successful exploitation does not require authentication. Apache HTTP Server 2.4.60,...
watchTowr Warns of Active Exploitation of SonicWall SMA 100 Devices
watchTowr reveals active exploitation of SonicWall SMA 100 vulnerabilities CVE-2024-38475 & CVE-2023-44221 potentially leading to full system takeover…...
SonicWall SMA 1000 Series < 12.4.3-02854 Pre-authentication Remote Command Execution (SNWLID-2025-0002)
The remote host is a SonicWall SMA 1000 Series device that may be affected by a pre-authentication remote command execution vulnerability: - Pre-authentication deserialization of untrusted data vulnerability has been identified in the SMA1000 Appliance Management Console AMC and Central Managemen...
The vulnerability of SonicWall SMA 100 network firewall microprogramming software, related to the use of a insecure random number generator program, allows attackers to disclose protected information.
The vulnerability of SonicWall SMA 100 network firewall microprogramming software is related to the use of a potentially insecure program for generating random numbers. Exploiting this vulnerability could allow a malicious actor to disclose protected information...
PT-2024-35812 · Sonicwall +1 · Sonicwall Sma100 Sslvpn +1
Name of the Vulnerable Software and Affected Versions: SonicWall SMA100 SSLVPN versions 10.2.1.13-72sv and earlier Description: A problem in the mod httprp library loaded by the Apache web server allows remote attackers to cause a stack-based buffer overflow, potentially leading to code execution...
The vulnerability of the implementation of the SSL VPN technology using the micro-programming software for network interfaces of the SMA 100 series, which allows a intruder to execute any command they desire.
The vulnerability of the implementation of the SSL VPN micro-programming system for network interfaces of SONICWALL series SMA 100 exists due to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor ...
SonicWall Secure Mobile Access (SMA) < 10.2.1.5-34sv Buffer Overflow (SNWLID-2022-0019)
The remote host is a SonicWall Secure Mobile Access SMA device with a version number 10.2.1.5-34sv. It is, therefore, affected by a buffer overflow vulnerability that allows a remote authenticated attacker to cause Denial of Service DoS on the appliance or potentially lead to code execution. Note...
PT-2022-4430 · Sonicwall · Sonicwall Sma 100 Series
Name of the Vulnerable Software and Affected Versions: SonicWall SMA 100 series affected versions not specified Description: The issue is related to a disclosure of information in the SonicWall SMA 100 series firewalls' firmware. It allows a remote attacker to gain unauthorized access to protecte...