Sma 410 Firmware Security Vulnerabilities and Issues — Sma 410 Firmware CVE List

Lucene search

SonicwallSma 410 Firmware

6 matches found

CVE•added 2025/05/07 6:15 p.m.•65 views

CVE-2025-32819

A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to factory default settings.

8.8CVSS8.5AI score0.00129EPSS

CVE•added 2025/05/07 6:15 p.m.•61 views

CVE-2025-32820

A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges can inject a path traversal sequence to make any directory on the SMA appliance writable.

8.8CVSS8.3AI score0.00145EPSS

CVE•added 2025/05/07 6:15 p.m.•57 views

CVE-2025-32821

A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN admin privileges can with admin privileges can inject shell command arguments to upload a file on the appliance.

7.2CVSS7.7AI score0.00076EPSS

CVE•added 2025/07/23 3:15 p.m.•12 views

CVE-2025-40598

A Reflected cross-site scripting (XSS) vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated attacker to potentially execute arbitrary JavaScript code.

6.1CVSS6.7AI score0.00068EPSS

CVE•added 2025/07/23 3:15 p.m.•11 views

CVE-2025-40596

A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.

7.3CVSS7.6AI score0.00068EPSS

CVE•added 2025/07/23 3:15 p.m.•11 views

CVE-2025-40597

A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.

7.5CVSS7.6AI score0.00068EPSS