sonicwall sonicos の CVE(68 件)

CVE 件数: 68 CPE versions: View versions table

概要

本ページは sonicwall sonicos に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。

表示中 120 / 68 CVE 件数
«« 先頭 « 前へ 1 / 4 次へ »
CVE 概要 ソース CVSS 最大値 EPSS(%) 公開 更新
CVE-2026-0206 A post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall. [email protected] 4.9 0.50% 2026-04-29 2026-06-17
CVE-2026-0205 A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services. [email protected] 6.8 0.43% 2026-04-29 2026-06-17
CVE-2026-0204 A vulnerability in the access control mechanism of SonicOS may allow certain management interface functions to be accessible under specific conditions. [email protected] 8.0 0.41% 2026-04-29 2026-06-17
CVE-2026-3439 A post-authentication Stack-based Buffer Overflow vulnerability in SonicOS certificate handling allows a remote attacker to crash a firewall. [email protected] 4.9 0.26% 2026-03-04 2026-06-17
CVE-2026-0402 A post-authentication Out-of-bounds Read vulnerability in SonicOS allows a remote attacker to crash a firewall. [email protected] 4.9 0.26% 2026-02-24 2026-06-17
CVE-2026-0401 A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to crash a firewall. [email protected] 4.9 0.34% 2026-02-24 2026-06-17
CVE-2026-0400 A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a firewall. [email protected] 4.9 0.40% 2026-02-24 2026-06-17
CVE-2026-0399 Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint. [email protected] 4.9 0.32% 2026-02-24 2026-06-17
CVE-2025-40601 A Stack-based buffer overflow vulnerability in the SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash. [email protected] 7.5 1.06% 2025-11-20 2026-06-17
CVE-2025-40600 Use of Externally-Controlled Format String vulnerability in the SonicOS SSL VPN interface allows a remote unauthenticated attacker to cause service disruption. [email protected] 9.8 0.88% 2025-07-29 2026-06-17
CVE-2024-53704 KEV An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication. [email protected] 9.8 95.13% 2025-01-09 2026-06-17
CVE-2024-40766 KEV An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash. This issue affects SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 devices running SonicOS 7.0.1-5035 and older versions. [email protected] 9.8 15.59% 2024-08-23 2026-06-17
CVE-2024-40764 Heap-based buffer overflow vulnerability in the SonicOS IPSec VPN allows an unauthenticated remote attacker to cause Denial of Service (DoS). [email protected] 7.5 0.70% 2024-07-18 2026-06-17
CVE-2024-3596 RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature. [email protected] 9.0 14.86% 2024-07-09 2026-06-17
CVE-2024-29013 Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote attacker to cause Denial of Service (DoS) via memcpy function. [email protected] 6.5 0.64% 2024-06-20 2026-06-17
CVE-2024-29012 Stack-based buffer overflow vulnerability in the SonicOS HTTP server allows an authenticated remote attacker to cause Denial of Service (DoS) via sscanf function. [email protected] 7.5 0.54% 2024-06-20 2026-06-17
CVE-2024-22394 An improper authentication vulnerability has been identified in SonicWall SonicOS SSL-VPN feature, which in specific conditions could allow a remote attacker to bypass authentication.  This issue affects only firmware version SonicOS 7.1.1-7040. [email protected] 9.8 0.75% 2024-02-07 2026-06-17
CVE-2023-41715 SonicOS post-authentication Improper Privilege Management vulnerability in the SonicOS SSL VPN Tunnel allows users to elevate their privileges inside the tunnel. [email protected] 8.8 0.65% 2023-10-17 2026-06-17
CVE-2023-41713 SonicOS Use of Hard-coded Password vulnerability in the 'dynHandleBuyToolbar' demo function. [email protected] 7.5 0.59% 2023-10-17 2026-06-17
CVE-2023-41712 SonicOS post-authentication Stack-Based Buffer Overflow Vulnerability in the SSL VPN plainprefs.exp URL endpoint leads to a firewall crash. [email protected] 6.5 0.80% 2023-10-17 2026-06-17
«« 先頭 « 前へ 1 / 4 次へ »
cvelogic Threat Intelligence