SonicWall SECURE MOBILE ACCESS (SMA) 100

CPE Details

SonicWall SECURE MOBILE ACCESS (SMA) 100
sonicwall
sma_100
-
2019-12-19
12h01 +00:00
2021-08-16
13h21 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:h:sonicwall:sma_100:-:*:*:*:*:*:*:*

Informations

Vendor

sonicwall

Product

sma_100

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-20016 2021-02-03 20h35 +00:00 A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. This vulnerability impacts SMA100 build version 10.x.
9.8
Critical
CVE-2020-5146 2021-01-08 23h15 +00:00 A vulnerability in SonicWall SMA100 appliance allow an authenticated management-user to perform OS command injection using HTTP POST parameters. This vulnerability affected SMA100 Appliance version 10.2.0.2-20sv and earlier.
7.2
High
CVE-2019-7483 2019-12-19 00h35 +00:00 In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of a file on the server.
7.5
High
CVE-2019-7484 2019-12-18 23h35 +00:00 Authenticated SQL Injection in SonicWall SMA100 allow user to gain read-only access to unauthorized resources using viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.
6.5
Medium
CVE-2019-7485 2019-12-18 23h35 +00:00 Buffer overflow in SonicWall SMA100 allows an authenticated user to execute arbitrary code in DEARegister CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.
8.8
High
CVE-2019-7486 2019-12-18 23h35 +00:00 Code injection in SonicWall SMA100 allows an authenticated user to execute arbitrary code in viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.4 and earlier.
8.8
High
CVE-2019-7482 2019-12-18 23h35 +00:00 Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.
9.8
Critical
CVE-2019-7481 2019-12-17 22h25 +00:00 Vulnerability in SonicWall SMA100 allow unauthenticated user to gain read-only access to unauthorized resources. This vulnerablity impacted SMA100 version 9.0.0.3 and earlier.
7.5
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.