Vulnerabilities > Sonicwall > Sonicos > 7.1.1.7040

DATE CVE VULNERABILITY TITLE RISK
2025-01-09 CVE-2024-53704 Unspecified vulnerability in Sonicwall Sonicos
An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.
network
low complexity
sonicwall
critical
9.8
2024-07-18 CVE-2024-40764 Out-of-bounds Write vulnerability in Sonicwall Sonicos
Heap-based buffer overflow vulnerability in the SonicOS IPSec VPN allows an unauthenticated remote attacker to cause Denial of Service (DoS).
network
low complexity
sonicwall CWE-787
7.5
2024-06-20 CVE-2024-29012 Out-of-bounds Write vulnerability in Sonicwall Sonicos
Stack-based buffer overflow vulnerability in the SonicOS HTTP server allows an authenticated remote attacker to cause Denial of Service (DoS) via sscanf function.
network
low complexity
sonicwall CWE-787
7.5
2024-06-20 CVE-2024-29013 Out-of-bounds Write vulnerability in Sonicwall Sonicos
Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote attacker to cause Denial of Service (DoS) via memcpy function.
network
low complexity
sonicwall CWE-787
6.5
2024-02-08 CVE-2024-22394 Improper Authentication vulnerability in Sonicwall Sonicos 7.1.17040
An improper authentication vulnerability has been identified in SonicWall SonicOS SSL-VPN feature, which in specific conditions could allow a remote attacker to bypass authentication.  This issue affects only firmware version SonicOS 7.1.1-7040.
network
low complexity
sonicwall CWE-287
critical
9.8