Sonicwall Vulnérabilités

Chronologie

Taper

Firewall Software157
Anti-Malware Software18
Remote Access Software5

Produit

SonicWALL SonicOS40
SonicWALL GMS16
SonicWALL Analytics14
SonicWALL Viewpoint14
SonicWALL SMA10012

Contre-mesures

Official Fix63
Temporary Fix1
Workaround4
Unavailable3
Not Defined109

Exploitabilité

High15
Functional0
Proof-of-Concept30
Unproven0
Not Defined135

Vecteur d'accès

Not Defined0
Physical0
Local8
Adjacent31
Network141

Authentification

Not Defined0
High4
Low98
None78

Interaction de l'utilisateur

Not Defined0
Required50
None130

C3BM Index

CVSSv3 Base

≤10
≤20
≤33
≤426
≤523
≤627
≤752
≤834
≤98
≤107

CVSSv3 Temp

≤10
≤20
≤33
≤428
≤528
≤627
≤749
≤830
≤912
≤103

VulDB

≤10
≤20
≤34
≤438
≤520
≤638
≤744
≤828
≤91
≤107

NVD

≤10
≤20
≤30
≤40
≤52
≤69
≤716
≤820
≤914
≤1015

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤80
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k25
<2k101
<5k50
<10k4
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k152
<2k24
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (53): Analytics (15), Analytics On-Prem (2), Analyzer (1), AntiSpam (8), Aventail Sra Ex7000 (1), Capture Client (1), Continuous Data Protection (3), Directory Services Connector (2), E-mail Security (1), EMail (3), EMail Security Appliance (4), Email Security (8), Email Security Appliance (3), Email Security Appliance (1), Email Security Virtual Appliance (1), Firewall (1), GMS (18), Global Management System (3), Global VPN Client (6), Hosted Email Security (1), NSA (1), NetExtender (2), NetExtender Client (1), Pro (2), SMA 100 (11), SMA100 (15), SMA 200 (12), SMA 210 (12), SMA 400 (12), SMA 410 (12), SMA 500v (11), SMA1000 (5), SOHO (4), SOHO3 (1), SOHO Firewall (2), SSL-VPN End-Point Interrogator (1), SSL-VPN NetExtender Windows Client (1), SSL-VPN VirtualOffice (1), SSL VPN (3), Scrutinizer (6), Scrutinizer Dashboard (1), Secure Remote Access (1), Secure Remote Access 100 (1), Secure Remote Access Server (3), SonicOS (43), SonicOSv (3), Ssl Vpn 200 (1), Switch (2), Tele2 (1), UMA E5000 (1), ViewPoint (1), Viewpoint (14), installer Activex Control (1)

Link to Vendor Website: https://www.sonicwall.com/

PubliéBaseTempVulnérabilitéProdExpConEPSSCTICVE
13/03/20243.83.7SonicWall Email Security Appliance directory traversalAnti-Malware SoftwareNot DefinedOfficial Fix0.000440.00CVE-2024-22398
13/03/20242.42.3SonicWall SonicOS SSLVPN Portal cross site scriptingFirewall SoftwareNot DefinedOfficial Fix0.000430.06CVE-2024-22397
13/03/20245.35.1SonicWall SonicOS IPsec buffer overflowFirewall SoftwareNot DefinedOfficial Fix0.000430.00CVE-2024-22396
23/02/20245.35.2SonicWALL SMA 100/SMA 200/SMA 210/SMA 400/SMA 410/SMA 500v MFA elévation de privilègesFirewall SoftwareNot DefinedOfficial Fix0.000430.03CVE-2024-22395
08/02/20248.58.5SonicWall SonicOS SSL-VPN authentification faibleFirewall SoftwareNot DefinedNot Defined0.000910.05CVE-2024-22394
16/01/20246.76.5SonicWall Capture Client/NetExtender Client SFPMonitor.sys buffer overflowFirewall SoftwareNot DefinedOfficial Fix0.000430.03CVE-2023-6340
06/12/20238.08.0SonicWall SMA100/SMA 200/SMA 210/SMA 400/SMA 410/SMA 500v MFA authentification faibleFirewall SoftwareNot DefinedNot Defined0.000880.04CVE-2023-5970
06/12/20235.95.9SonicWall SMA100/SMA 200/SMA 210/SMA 400/SMA 410/SMA 500v SSL-VPN Management Interface elévation de privilègesFirewall SoftwareNot DefinedNot Defined0.000760.06CVE-2023-44221
27/10/20237.67.6SonicWall NetExtender elévation de privilègesFirewall SoftwareNot DefinedNot Defined0.000420.02CVE-2023-44220
27/10/20236.56.5SonicWall Directory Services Connector Recovery elévation de privilègesFirewall SoftwareNot DefinedNot Defined0.000420.02CVE-2023-44219
18/10/20237.57.5SonicWALL SonicOS SSL VPN Tunnel authentification faibleFirewall SoftwareNot DefinedNot Defined0.000500.03CVE-2023-41715
18/10/20236.96.9SonicWALL SonicOS Demo dynHandleBuyToolbar authentification faibleFirewall SoftwareNot DefinedNot Defined0.000870.04CVE-2023-41713
18/10/20236.16.1SonicWALL SonicOS SSL VPN plainprefs.exp buffer overflowFirewall SoftwareNot DefinedNot Defined0.000440.03CVE-2023-41712
18/10/20236.16.1SonicWALL SonicOS sonicwall.exp buffer overflowFirewall SoftwareNot DefinedNot Defined0.000440.03CVE-2023-41711
18/10/20236.16.1SonicWALL SonicOS ssoStats-s.xml buffer overflowFirewall SoftwareNot DefinedNot Defined0.000440.00CVE-2023-39280
18/10/20236.16.1SonicWALL SonicOS sonicflow.csv buffer overflowFirewall SoftwareNot DefinedNot Defined0.000440.00CVE-2023-39277
18/10/20236.16.1SonicWALL SonicOS getPacketReplayData.json buffer overflowFirewall SoftwareNot DefinedNot Defined0.000440.00CVE-2023-39279
18/10/20236.16.1SonicWALL SonicOS main.cgi buffer overflowFirewall SoftwareNot DefinedNot Defined0.000440.00CVE-2023-39278
18/10/20236.16.1SonicWALL SonicOS getBookmarkList.json buffer overflowFirewall SoftwareNot DefinedNot Defined0.000440.00CVE-2023-39276
13/07/20238.08.0SonicWALL GMS/Analytics CAS Web Services Application authentification faibleFirewall SoftwareNot DefinedNot Defined0.000910.02CVE-2023-34137
13/07/20238.08.0SonicWALL GMS/Analytics elévation de privilègesFirewall SoftwareNot DefinedNot Defined0.000940.00CVE-2023-34136
13/07/20235.05.0SonicWALL GMS/Analytics Web Service divulgation de l'informationFirewall SoftwareNot DefinedNot Defined0.000490.00CVE-2023-34134
13/07/20235.95.9SonicWALL GMS/Analytics divulgation de l'informationFirewall SoftwareNot DefinedNot Defined0.000650.00CVE-2023-34133
13/07/20236.46.4SonicWALL GMS/Analytics divulgation de l'informationFirewall SoftwareNot DefinedNot Defined0.000680.00CVE-2023-34132
13/07/20234.84.8SonicWALL GMS/Analytics divulgation de l'informationFirewall SoftwareNot DefinedNot Defined0.000520.00CVE-2023-34131

155 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 155 results.

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!