This page lists publicly disclosed CVE vulnerabilities affecting sonicwall sonicos (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-0206 | A post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall. | [email protected] | 4.9 | 0.50% | 2026-04-29 | 2026-05-05 |
| CVE-2026-0205 | A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services. | [email protected] | 6.8 | 0.43% | 2026-04-29 | 2026-05-05 |
| CVE-2026-0204 | A vulnerability in the access control mechanism of SonicOS may allow certain management interface functions to be accessible under specific conditions. | [email protected] | 8.0 | 0.41% | 2026-04-29 | 2026-05-05 |
| CVE-2026-3439 | A post-authentication Stack-based Buffer Overflow vulnerability in SonicOS certificate handling allows a remote attacker to crash a firewall. | [email protected] | 4.9 | 0.26% | 2026-03-04 | 2026-03-05 |
| CVE-2026-0402 | A post-authentication Out-of-bounds Read vulnerability in SonicOS allows a remote attacker to crash a firewall. | [email protected] | 4.9 | 0.26% | 2026-02-24 | 2026-02-26 |
| CVE-2026-0401 | A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to crash a firewall. | [email protected] | 4.9 | 0.34% | 2026-02-24 | 2026-02-26 |
| CVE-2026-0400 | A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a firewall. | [email protected] | 4.9 | 0.40% | 2026-02-24 | 2026-02-26 |
| CVE-2026-0399 | Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint. | [email protected] | 4.9 | 0.32% | 2026-02-24 | 2026-02-26 |
| CVE-2025-40601 | A Stack-based buffer overflow vulnerability in the SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash. | [email protected] | 7.5 | 1.06% | 2025-11-20 | 2025-12-12 |
| CVE-2025-40600 | Use of Externally-Controlled Format String vulnerability in the SonicOS SSL VPN interface allows a remote unauthenticated attacker to cause service disruption. | [email protected] | 9.8 | 0.84% | 2025-07-29 | 2025-08-11 |
| CVE-2024-53704 KEV | An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication. | [email protected] | 9.8 | 94.64% | 2025-01-09 | 2025-10-31 |
| CVE-2024-40766 KEV | An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash. This issue affects SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 devices running SonicOS 7.0.1-5035 and older versions. | [email protected] | 9.8 | 15.69% | 2024-08-23 | 2025-10-31 |
| CVE-2024-40764 | Heap-based buffer overflow vulnerability in the SonicOS IPSec VPN allows an unauthenticated remote attacker to cause Denial of Service (DoS). | [email protected] | 7.5 | 0.70% | 2024-07-18 | 2024-11-21 |
| CVE-2024-3596 | RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature. | [email protected] | 9.0 | 14.86% | 2024-07-09 | 2026-05-12 |
| CVE-2024-29013 | Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote attacker to cause Denial of Service (DoS) via memcpy function. | [email protected] | 6.5 | 0.64% | 2024-06-20 | 2025-03-25 |
| CVE-2024-29012 | Stack-based buffer overflow vulnerability in the SonicOS HTTP server allows an authenticated remote attacker to cause Denial of Service (DoS) via sscanf function. | [email protected] | 7.5 | 0.54% | 2024-06-20 | 2025-03-25 |
| CVE-2024-22394 | An improper authentication vulnerability has been identified in SonicWall SonicOS SSL-VPN feature, which in specific conditions could allow a remote attacker to bypass authentication. This issue affects only firmware version SonicOS 7.1.1-7040. | [email protected] | 9.8 | 0.75% | 2024-02-08 | 2024-11-21 |
| CVE-2023-41715 | SonicOS post-authentication Improper Privilege Management vulnerability in the SonicOS SSL VPN Tunnel allows users to elevate their privileges inside the tunnel. | [email protected] | 8.8 | 0.65% | 2023-10-17 | 2025-05-02 |
| CVE-2023-41713 | SonicOS Use of Hard-coded Password vulnerability in the 'dynHandleBuyToolbar' demo function. | [email protected] | 7.5 | 0.59% | 2023-10-17 | 2024-11-21 |
| CVE-2023-41712 | SonicOS post-authentication Stack-Based Buffer Overflow Vulnerability in the SSL VPN plainprefs.exp URL endpoint leads to a firewall crash. | [email protected] | 6.5 | 0.80% | 2023-10-17 | 2024-11-21 |