SonicWall Sma 400 Firmware 10.2.0.7-34sv

CPE Details

SonicWall Sma 400 Firmware 10.2.0.7-34sv
10.2.0.7-34sv
2021-10-05
14h04 +00:00
2021-10-05
14h55 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:o:sonicwall:sma_400_firmware:10.2.0.7-34sv:*:*:*:*:*:*:*

Informations

Vendor

sonicwall

Product

sma_400_firmware

Version

10.2.0.7-34sv

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-22395 2024-02-23 23h37 +00:00 Improper access control vulnerability has been identified in the SMA100 SSL-VPN virtual office portal, which in specific conditions could potentially enable a remote authenticated attacker to associate another user's MFA mobile application.
6.3
Moyen
CVE-2023-5970 2023-12-05 20h20 +00:00 Improper authentication in the SMA100 SSL-VPN virtual office portal allows a remote authenticated attacker to create an identical external domain user using accent characters, resulting in an MFA bypass.
8.8
Haute
CVE-2023-44221 2023-12-05 20h10 +00:00 Improper neutralization of special elements in the SMA100 SSL-VPN management interface allows a remote authenticated attacker with administrative privilege to inject arbitrary commands as a 'nobody' user, potentially leading to OS Command Injection Vulnerability.
7.2
Haute
CVE-2022-2915 2022-08-26 18h30 +00:00 A Heap-based Buffer Overflow vulnerability in the SonicWall SMA100 appliance allows a remote authenticated attacker to cause Denial of Service (DoS) on the appliance or potentially lead to code execution. This vulnerability impacts 10.2.1.5-34sv and earlier versions.
8.8
Haute
CVE-2021-20035 2021-09-27 15h20 +00:00 Improper neutralization of special elements in the SMA100 management interface allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user which potentially leads to DoS.
6.5
Moyen
CVE-2021-20034 2021-09-27 15h20 +00:00 An improper access control vulnerability in SMA100 allows a remote unauthenticated attacker to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to factory default settings.
9.1
Critique