Vulnerabilities > Sonicwall > Sonicos

DATE CVE VULNERABILITY TITLE RISK
2019-04-02 CVE-2019-7475 Unspecified vulnerability in Sonicwall Sonicos and Sonicosv
A vulnerability in SonicWall SonicOS and SonicOSv with management enabled system on specific configuration allow unprivileged user to access advanced routing services.
network
low complexity
sonicwall
critical
 9.8
9.8
2019-04-02 CVE-2019-7474 Improper Handling of Exceptional Conditions vulnerability in Sonicwall Sonicos and Sonicosv
A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave the firewall in an unstable state by downloading certificate with specific extension.
network
low complexity
sonicwall CWE-755
6.5
6.5
2019-02-19 CVE-2018-9867 Incorrect Permission Assignment for Critical Resource vulnerability in Sonicwall Sonicos and Sonicosv
In SonicWall SonicOS, administrators without full permissions can download imported certificates.
local
low complexity
sonicwall CWE-732
5.5
5.5
2018-01-08 CVE-2018-5281 Cross-site Scripting vulnerability in Sonicwall Sonicos
SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens.
network
low complexity
sonicwall CWE-79
5.4
5.4
2018-01-08 CVE-2018-5280 Cross-site Scripting vulnerability in Sonicwall Sonicos
SonicWall SonicOS on Network Security Appliance (NSA) 2016 Q4 devices has XSS via the Configure SSO screens.
network
low complexity
sonicwall CWE-79
5.4
5.4