Vulnerabilities > Sonicwall > SMA 500V Firmware

DATE CVE VULNERABILITY TITLE RISK
2021-12-08 CVE-2021-20040 Path Traversal vulnerability in Sonicwall products
A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated attacker to upload crafted web pages or files as a 'nobody' user.
network
low complexity
sonicwall CWE-22
7.5
2021-12-08 CVE-2021-20041 Infinite Loop vulnerability in Sonicwall products
An unauthenticated and remote adversary can consume all of the device's CPU due to crafted HTTP requests sent to SMA100 /fileshare/sonicfiles/sonicfiles resulting in a loop with unreachable exit condition.
network
low complexity
sonicwall CWE-835
7.5
2021-12-08 CVE-2021-20042 Unspecified vulnerability in Sonicwall products
An unauthenticated remote attacker can use SMA 100 as an unintended proxy or intermediary undetectable proxy to bypass firewall rules.
network
low complexity
sonicwall
critical
9.8
2021-12-08 CVE-2021-20043 Out-of-bounds Write vulnerability in Sonicwall products
A Heap-based buffer overflow vulnerability in SonicWall SMA100 getBookmarks method allows a remote authenticated attacker to potentially execute code as the nobody user in the appliance.
network
low complexity
sonicwall CWE-787
8.8
2021-12-08 CVE-2021-20044 OS Command Injection vulnerability in Sonicwall products
A post-authentication remote command injection vulnerability in SonicWall SMA100 allows a remote authenticated attacker to execute OS system commands in the appliance.
network
low complexity
sonicwall CWE-78
8.8
2021-12-08 CVE-2021-20045 Classic Buffer Overflow vulnerability in Sonicwall products
A buffer overflow vulnerability in SMA100 sonicfiles RAC_COPY_TO (RacNumber 36) method allows a remote unauthenticated attacker to potentially execute code as the 'nobody' user in the appliance.
network
low complexity
sonicwall CWE-120
critical
9.8
2021-08-04 CVE-2021-20028 SQL Injection vulnerability in Sonicwall products
Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier
network
low complexity
sonicwall CWE-89
critical
9.8