CVE-2019-7475 — CVSS 9.8 (critical): A vulnerability in SonicWall SonicOS and SonicOSv with management enabled system on specific configuration allow unprivileged user to…
CVE-2022-22274 — CVSS 9.8 (critical): A Stack-based buffer overflow vulnerability in the SonicOS via HTTP request allows a remote unauthenticated attacker to cause Denial of…
CVE-2019-7477 — CVSS 7.5 (high): A vulnerability in SonicWall SonicOS and SonicOSv TLS CBC Cipher allow remote attackers to obtain sensitive plaintext data when CBC cipher…
CVE-2020-5133 — CVSS 7.5 (high): A vulnerability in SonicOS allows a remote unauthenticated attacker to cause Denial of Service due to buffer overflow, which leads to a…
CVE-2020-5138 — CVSS 7.5 (high): A Heap Overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS) on the firewall…
CVE-2020-5139 — CVSS 7.5 (high): A vulnerability in SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS) due to the release of…
CVE-2020-5140 — CVSS 7.5 (high): A vulnerability in SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS) on the firewall SSLVPN service by…
CVE-2020-5137 — CVSS 7.5 (high): A buffer overflow vulnerability in SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS) on the firewall SSLVPN…
CVE-2021-20019 — CVSS 7.5 (high): A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead…
CVE-2019-7479 — CVSS 7.2 (high): A vulnerability in SonicOS allow authenticated read-only admin can elevate permissions to configuration mode. This vulnerability affected…
CVE-2020-5136 — CVSS 6.5 (medium): A buffer overflow vulnerability in SonicOS allows an authenticated attacker to cause Denial of Service (DoS) in the SSL-VPN and virtual…
CVE-2019-7474 — CVSS 6.5 (medium): A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave the firewall in an unstable state by…
CVE-2020-5134 — CVSS 6.5 (medium): A vulnerability in SonicOS allows an authenticated attacker to cause out-of-bound invalid file reference leads to a firewall crash. This…
CVE-2020-5141 — CVSS 6.5 (medium): A vulnerability in SonicOS allows a remote unauthenticated attacker to brute force Virtual Assist ticket ID in the firewall SSLVPN service…
CVE-2020-5142 — CVSS 6.1 (medium): A stored cross-site scripting (XSS) vulnerability exists in the SonicOS SSLVPN web interface. A remote unauthenticated attacker is able to…
CVE-2018-3639 — CVSS 5.5 (medium): Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior…
CVE-2018-9867 — CVSS 5.5 (medium): In SonicWall SonicOS, administrators without full permissions can download imported certificates. Occurs when administrators who are not in…