📦 Sma 400 Firmware
by Sonicwall
🔍 What is Sma 400 Firmware?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This CVE allows attackers to execute arbitrary operating system commands on vulnerable SonicWall Secure Remote Access (SRA) and Secure Mobile Access (SMA) appliances through improper input sanitizatio...
CVE-2021-20042 allows unauthenticated remote attackers to use SonicWall SMA 100 series appliances as unintended proxies to bypass firewall rules. This affects SMA 200, 210, 400, 410, and 500v applianc...
A buffer overflow vulnerability in SonicWall SMA appliances allows remote unauthenticated attackers to execute arbitrary code as the 'nobody' user. This affects SMA 200, 210, 400, 410, and 500v applia...
A stack-based buffer overflow vulnerability in SonicWall SMA 100 series appliances' Apache httpd mod_cgi module allows remote unauthenticated attackers to execute arbitrary code as the 'nobody' user. ...
CVE-2021-20034 is an improper access control vulnerability in SonicWall SMA100 appliances that allows unauthenticated attackers to bypass path traversal checks and delete arbitrary files. This could l...
This vulnerability allows authenticated SSLVPN users on SMA100 devices to bypass path traversal protections and delete arbitrary files. Attackers could force a factory reset, causing service disruptio...
A command injection vulnerability in SMA100 SSL-VPN appliances allows authenticated administrators to execute arbitrary shell commands by manipulating file upload parameters. This affects organization...
A stack-based buffer overflow vulnerability in SonicWall SMA100 SSLVPN firmware's mod_httprp library allows remote attackers to potentially execute arbitrary code. This affects SMA100 appliances runni...
A stack-based buffer overflow vulnerability in SonicWall SMA100 SSLVPN web management interface allows remote attackers to execute arbitrary code on affected devices. This affects organizations using ...
This vulnerability allows a remote authenticated attacker to bypass multi-factor authentication (MFA) on SonicWall SMA100 SSL-VPN virtual office portals by creating duplicate external domain users usi...
CVE-2021-20049 is a username enumeration vulnerability in SonicWall SMA100's password change API that allows unauthenticated attackers to determine valid usernames by analyzing server responses. This ...
A post-authentication remote command injection vulnerability in SonicWall SMA100 appliances allows authenticated attackers to execute arbitrary operating system commands on affected devices. This affe...
A relative path traversal vulnerability in SonicWall SMA appliances allows unauthenticated remote attackers to upload arbitrary files as a low-privileged 'nobody' user. This affects SMA 200, 210, 400,...
This vulnerability in SonicWall SMA100 SSLVPN devices uses a weak random number generator for backup codes, allowing attackers to potentially predict these codes. This affects organizations using vuln...