CVE-2019-7475
- EPSS 0.21%
- Veröffentlicht 02.04.2019 18:30:25
- Zuletzt bearbeitet 21.11.2024 04:48:15
A vulnerability in SonicWall SonicOS and SonicOSv with management enabled system on specific configuration allow unprivileged user to access advanced routing services. This vulnerability affected SonicOS Gen 5 version 5.9.1.10 and earlier, Gen 6 vers...
CVE-2019-7474
- EPSS 0.2%
- Veröffentlicht 02.04.2019 18:30:25
- Zuletzt bearbeitet 21.11.2024 04:48:15
A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave the firewall in an unstable state by downloading certificate with specific extension. This vulnerability affected SonicOS Gen 5 version 5.9.1.10 and earli...
CVE-2018-9867
- EPSS 0.02%
- Veröffentlicht 19.02.2019 21:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:50
In SonicWall SonicOS, administrators without full permissions can download imported certificates. Occurs when administrators who are not in the SonicWall Administrators user group attempt to download imported certificates. This vulnerability affected...
CVE-2018-5281
- EPSS 0.34%
- Veröffentlicht 08.01.2018 09:29:00
- Zuletzt bearbeitet 21.11.2024 04:08:29
SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens.
CVE-2018-5280
- EPSS 0.3%
- Veröffentlicht 08.01.2018 09:29:00
- Zuletzt bearbeitet 21.11.2024 04:08:29
SonicWall SonicOS on Network Security Appliance (NSA) 2016 Q4 devices has XSS via the Configure SSO screens.
CVE-2015-3447
- EPSS 0.74%
- Veröffentlicht 29.04.2015 20:59:04
- Zuletzt bearbeitet 12.04.2025 10:46:40
Multiple cross-site scripting (XSS) vulnerabilities in macIpSpoofView.html in Dell SonicWall SonicOS 7.5.0.12 and 6.x allow remote attackers to inject arbitrary web script or HTML via the (1) searchSpoof or (2) searchSpoofIpDet parameter.