Sonicwall

Sonicosv

19 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-22274

  • EPSS 40.44%
  • Veröffentlicht 25.03.2022 23:15:08
  • Zuletzt bearbeitet 21.11.2024 06:46:32

A Stack-based buffer overflow vulnerability in the SonicOS via HTTP request allows a remote unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution in the firewall.

7.5

CVE-2021-20019

  • EPSS 1.05%
  • Veröffentlicht 23.06.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 05:45:47

A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability.

5.3

CVE-2020-5143

  • EPSS 0.5%
  • Veröffentlicht 12.10.2020 11:15:13
  • Zuletzt bearbeitet 21.11.2024 05:33:37

SonicOS SSLVPN login page allows a remote unauthenticated attacker to perform firewall management administrator username enumeration based on the server responses. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5...

6.1

CVE-2020-5142

  • EPSS 0.35%
  • Veröffentlicht 12.10.2020 11:15:13
  • Zuletzt bearbeitet 21.11.2024 05:33:37

A stored cross-site scripting (XSS) vulnerability exists in the SonicOS SSLVPN web interface. A remote unauthenticated attacker is able to store and potentially execute arbitrary JavaScript code in the firewall SSLVPN portal. This vulnerability affec...

6.5

CVE-2020-5141

  • EPSS 0.46%
  • Veröffentlicht 12.10.2020 11:15:13
  • Zuletzt bearbeitet 21.11.2024 05:33:37

A vulnerability in SonicOS allows a remote unauthenticated attacker to brute force Virtual Assist ticket ID in the firewall SSLVPN service. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3,...

7.5

CVE-2020-5140

  • EPSS 0.51%
  • Veröffentlicht 12.10.2020 11:15:13
  • Zuletzt bearbeitet 21.11.2024 05:33:37

A vulnerability in SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS) on the firewall SSLVPN service by sending a malicious HTTP request that leads to memory addresses leak. This vulnerability affected SonicOS Gen 5 ver...

6.5

CVE-2020-5136

  • EPSS 0.31%
  • Veröffentlicht 12.10.2020 11:15:12
  • Zuletzt bearbeitet 21.11.2024 05:33:36

A buffer overflow vulnerability in SonicOS allows an authenticated attacker to cause Denial of Service (DoS) in the SSL-VPN and virtual assist portal, which leads to a firewall crash. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.1...

7.5

CVE-2020-5139

  • EPSS 0.51%
  • Veröffentlicht 12.10.2020 11:15:12
  • Zuletzt bearbeitet 21.11.2024 05:33:36

A vulnerability in SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS) due to the release of Invalid pointer and leads to a firewall crash. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1....

7.5

CVE-2020-5138

  • EPSS 0.5%
  • Veröffentlicht 12.10.2020 11:15:12
  • Zuletzt bearbeitet 21.11.2024 05:33:36

A Heap Overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS) on the firewall SSLVPN service and leads to SonicOS crash. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen...

7.5

CVE-2020-5137

  • EPSS 0.5%
  • Veröffentlicht 12.10.2020 11:15:12
  • Zuletzt bearbeitet 21.11.2024 05:33:36

A buffer overflow vulnerability in SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS) on the firewall SSLVPN service and leads to firewall crash. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen ...