Sonicos@* Security Vulnerabilities and Issues — Sonicos@* CVE List

Lucene search

SonicwallSonicos*

6 matches found

CVE•added 2024/08/23 7:15 a.m.•338 views

CVE-2024-40766

An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash. This issue affects SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 dev...

9.8CVSS6.7AI score0.18328EPSS

CVE•added 2024/02/08 2:15 a.m.•93 views

CVE-2024-22394

An improper authentication vulnerability has been identified in SonicWall SonicOS SSL-VPN feature, which in specific conditions could allow a remote attacker to bypass authentication. This issue affects only firmware version SonicOS 7.1.1-7040.

9.8CVSS9.4AI score0.00863EPSS

CVE•added 2024/07/18 8:15 a.m.•65 views

CVE-2024-40764

Heap-based buffer overflow vulnerability in the SonicOS IPSec VPN allows an unauthenticated remote attacker to cause Denial of Service (DoS).

7.5CVSS7.5AI score0.00578EPSS

CVE•added 2024/03/14 4:15 a.m.•62 views

CVE-2024-22396

An Integer-based buffer overflow vulnerability in the SonicOS via IPSec allows a remote attacker in specific conditions to cause Denial of Service (DoS) and potentially execute arbitrary code by sending a specially crafted IKEv2 payload.

5.3CVSS8.1AI score0.01586EPSS

CVE•added 2024/06/20 9:15 a.m.•57 views

CVE-2024-29013

Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote attacker to cause Denial of Service (DoS) via memcpy function.

6.5CVSS7.4AI score0.00393EPSS

CVE•added 2024/06/20 9:15 a.m.•48 views

CVE-2024-29012

Stack-based buffer overflow vulnerability in the SonicOS HTTP server allows an authenticated remote attacker to cause Denial of Service (DoS) via sscanf function.

7.5CVSS7.4AI score0.00397EPSS