SonicWall SMA 500v

CPE Details

SonicWall SMA 500v
sonicwall
sma_500v
-
2021-02-17
16h52 +00:00
2021-02-17
16h52 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:sonicwall:sma_500v:-:*:*:*:*:*:*:*

Informations

Vendor

sonicwall

Product

sma_500v

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-20035 2021-09-27 17h20 +00:00 Improper neutralization of special elements in the SMA100 management interface allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user which potentially leads to DoS.
6.5
Medium
CVE-2021-20034 2021-09-27 15h20 +00:00 An improper access control vulnerability in SMA100 allows a remote unauthenticated attacker to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to factory default settings.
9.1
Critical
CVE-2021-20016 2021-02-03 20h35 +00:00 A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. This vulnerability impacts SMA100 build version 10.x.
9.8
Critical
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.