Lucene search
K

18 matches found

VulnCheck KEV
VulnCheck KEV
added 2026/05/19 12:0 a.m.20 views

VulnCheck KEV: CVE-2024-12802

SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN User Principal Name and SAM Security Account Manager account names when integrated with Microsoft Active Directory, allowing MFA to be configured independently for each login method and...

9.1CVSS6.6AI score0.00459EPSS
In wildExploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-26391

Malware in sbrugna...

7.8CVSS7.1AI score0.00569EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-26392

Malware in sbrugna...

8.6CVSS8.5AI score0.01191EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-7510

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00851EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:5 p.m.7 views

CVE-2021-20051

SonicWall Global VPN Client 4.10.7.1117 installer 32-bit and 64-bit and earlier versions have a DLL Search Order Hijacking vulnerability in one of the installer components. Successful exploitation via a local attacker could result in command execution in the target system...

7.8CVSS6.9AI score0.00697EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:38 p.m.11 views

CVE-2020-5145

SonicWall Global VPN client version 4.10.4.0314 and earlier have an insecure library loading DLL hijacking vulnerability. Successful exploitation could lead to remote code execution in the target system...

8.6CVSS7.8AI score0.01191EPSS
Exploits0
The Hacker News
The Hacker News
added 2022/09/01 12:55 p.m.27 views

Researchers Detail Emerging Cross-Platform BianLian Ransomware Attacks

.jpg The operators of the emerging cross-platform BianLian ransomware have increased their command-and-control C2 infrastructure this month, a development that alludes to an increase in the group's operational tempo. BianLian, written in the Go programming language, was first discovered in mid-Ju...

2.1AI score
Exploits0
CNNVD
CNNVD
added 2022/04/13 12:0 a.m.3 views

SonicWall SSLVPN 路径遍历漏洞

SonicWALL SSLVPN is a transparent software application for Windows and Linux users from SonicWALL USA. It enables remote users to securely connect to the corporate network. A path traversal vulnerability exists in SonicWall SSLVPN, which allows an authenticated attacker to read arbitrary files...

4.9CVSS5.6AI score0.01068EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/03/17 12:0 a.m.6 views

SonicWall SSLVPN 操作系统命令注入漏洞

SonicWALL SSLVPN is a transparent software application for Windows and Linux users from SonicWALL USA. It enables remote users to securely connect to the corporate network. An operating system command injection vulnerability exists in SonicWall SSLVPN and affects the following products and...

9.8CVSS7.6AI score0.01906EPSS
Exploits0References3
Krebs on Security
Krebs on Security
added 2022/02/14 6:22 p.m.114 views

Wazawaka Goes Waka Waka

In January, KrebsOnSecurity examined clues left behind by "Wazawaka," the hacker handle chosen by a major ransomware criminal in the Russian-speaking cybercrime scene. Wazawaka has since "lost his mind" according to his erstwhile colleagues, creating a Twitter account to drop exploit code for a...

7.5CVSS9.6AI score0.30084EPSS
Exploits0
HackRead
HackRead
added 2021/12/09 4:18 p.m.14 views

SMA 100 flaws in SonicWall VPN expose devices to remote takeover

By Waqas If exploited, an unauthenticated, remote attacker can execute code as a "nobody user" in the device meaning attacker would get root access and gain full control of the device. This is a post from HackRead.com Read the original post: SMA 100 flaws in SonicWall VPN expose devices to remote...

4AI score
Exploits0
OSV
OSV
added 2020/10/28 11:15 a.m.2 views

CVE-2020-5144

SonicWall Global VPN client version 4.10.4.0314 and earlier allows unprivileged windows user to elevate privileges to SYSTEM through loaded process hijacking vulnerability...

7.8CVSS7.1AI score
Exploits0References1
OSV
OSV
added 2020/10/28 11:15 a.m.3 views

CVE-2020-5145

SonicWall Global VPN client version 4.10.4.0314 and earlier have an insecure library loading DLL hijacking vulnerability. Successful exploitation could lead to remote code execution in the target system...

8.6CVSS7.8AI score0.01191EPSS
Exploits0References1
SonicWall
SonicWall
added 2020/10/28 9:31 a.m.8 views

SonicWall Global VPN client version 4.10.4.0314 and earlier allows privilege elevation through loaded process hijacking vulnerability

SonicWall Global VPN client version 4.10.4.0314 and earlier allows unprivileged windows user to elevate privileges to SYSTEM through loaded process hijacking vulnerability. CVE: CVE-2020-5144 Last updated: Oct. 28, 2020, 9:31 a.m...

7.1CVSS6.8AI score0.00569EPSS
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

SonicWALL SSL-VPN 'cgi-bin/welcome/VirtualOffice' Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35145/info Multiple SonicWALL SSL-VPN devices are prone to a remote format-string vulnerability because they fail to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2009/05/27 12:0 a.m.59 views

SEC Consult SA-20090525-4 :: SonicOS Format String Vulnerability

SEC Consult Security Advisory 20090525-4 ========================================================================== title: SonicOS Format String Vulnerability program: SonicWALL Global VPN Client vulnerable version: PRO 4100 SonicOS 4.0.0.2-51e Standard and Enhanced possibly other versions...

Exploits0
Cvelist
Cvelist
added 2007/12/07 11:0 a.m.24 views

CVE-2007-6273

Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in the 1 Hostname tag or the 2 name attribute in the Connection tag. NOTE: there might...

7.7AI score0.06199EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2006/05/11 12:0 a.m.12 views

SonicWall VPN Detection

Binary data 3573.prm...

7.3AI score
Exploits0
Rows per page
Query Builder