Vulnerabilities > Sonicwall > SMA 100 Firmware > 10.2.0.8.37sv

DATE CVE VULNERABILITY TITLE RISK
2021-12-23 CVE-2021-20049 Information Exposure Through Discrepancy vulnerability in Sonicwall products
A vulnerability in SonicWall SMA100 password change API allows a remote unauthenticated attacker to perform SMA100 username enumeration based on the server responses.
network
low complexity
sonicwall CWE-203
7.5
2021-12-23 CVE-2021-20050 Unspecified vulnerability in Sonicwall products
An Improper Access Control Vulnerability in the SMA100 series leads to multiple restricted management APIs being accessible without a user login, potentially exposing configuration meta-data.
network
low complexity
sonicwall
7.5