Vulnerabilities > Sonicwall

DATE	CVE	VULNERABILITY TITLE	RISK
2018-01-08	CVE-2018-5281	Cross-site Scripting vulnerability in Sonicwall Sonicos SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens. network low complexity sonicwall CWE-79	5.4
2018-01-08	CVE-2018-5280	Cross-site Scripting vulnerability in Sonicwall Sonicos SonicWall SonicOS on Network Security Appliance (NSA) 2016 Q4 devices has XSS via the Configure SSO screens. network low complexity sonicwall CWE-79	5.4
2016-02-17	CVE-2016-2397	Command Injection vulnerability in Sonicwall products The cliserver implementation in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote attackers to deserialize and execute arbitrary Java code via crafted XML data. network low complexity sonicwall CWE-77 critical	9.8
2016-02-17	CVE-2016-2396	Command Injection vulnerability in Sonicwall products The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote authenticated users to execute arbitrary commands via vectors related to configuration input. network low complexity sonicwall CWE-77 critical	9.9

Vulnerabilities > Sonicwall {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Sonicwall"}]}