Every CVE whose affected-product data names Sonicwall Netextender, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2024-29014 — CVSS 8.8 (high): Vulnerability in SonicWall SMA100 NetExtender Windows (32 and 64-bit) client 10.2.339 and earlier versions allows an attacker to arbitrary…
CVE-2023-44218 — CVSS 8.8 (high): A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system…
CVE-2022-22281 — CVSS 7.8 (high): A buffer overflow vulnerability in the SonicWall SSL-VPN NetExtender Windows Client (32 and 64 bit) in 10.2.322 and earlier versions…
CVE-2023-44217 — CVSS 7.8 (high): A local privilege escalation vulnerability in SonicWall Net Extender MSI client for Windows 10.2.336 and earlier versions allows a local…
CVE-2020-5131 — CVSS 7.8 (high): SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute…
CVE-2023-44220 — CVSS 7.3 (high): SonicWall NetExtender Windows (32-bit and 64-bit) client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in…
CVE-2015-4173 — CVSS 6.9 (medium): Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as…
CVE-2023-6340 — CVSS 5.5 (medium): SonicWall Capture Client version 3.7.10, NetExtender client version 10.2.337 and earlier versions are installed with sfpmonitor.sys driver…
CVE-2020-5147 — CVSS 5.3 (medium): SonicWall NetExtender Windows client vulnerable to unquoted service path vulnerability, this allows a local attacker to gain elevated…