📦 Sma 500v Firmware
by Sonicwall
🔍 What is Sma 500v Firmware?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
An authenticated arbitrary file upload vulnerability in SMA 100 series web management interface allows attackers with administrative privileges to upload malicious files. This could lead to remote cod...
This CVE allows attackers to execute arbitrary operating system commands on vulnerable SonicWall Secure Remote Access (SRA) and Secure Mobile Access (SMA) appliances through improper input sanitizatio...
CVE-2021-20042 allows unauthenticated remote attackers to use SonicWall SMA 100 series appliances as unintended proxies to bypass firewall rules. This affects SMA 200, 210, 400, 410, and 500v applianc...
A buffer overflow vulnerability in SonicWall SMA appliances allows remote unauthenticated attackers to execute arbitrary code as the 'nobody' user. This affects SMA 200, 210, 400, 410, and 500v applia...
A stack-based buffer overflow vulnerability in SonicWall SMA 100 series appliances' Apache httpd mod_cgi module allows remote unauthenticated attackers to execute arbitrary code as the 'nobody' user. ...
This CVE describes a critical SQL injection vulnerability in SonicWall Secure Remote Access (SRA) appliances. Attackers can exploit this to execute arbitrary SQL commands, potentially leading to data ...
A stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attackers to cause denial of service or potentially execute arbitrary code. This affects o...
This vulnerability allows authenticated SSLVPN users on SMA100 devices to bypass path traversal protections and delete arbitrary files. Attackers could force a factory reset, causing service disruptio...
A command injection vulnerability in SMA100 SSL-VPN appliances allows authenticated administrators to execute arbitrary shell commands by manipulating file upload parameters. This affects organization...
A stack-based buffer overflow vulnerability in SonicWall SMA100 SSLVPN firmware's mod_httprp library allows remote attackers to potentially execute arbitrary code. This affects SMA100 appliances runni...
A stack-based buffer overflow vulnerability in SonicWall SMA100 SSLVPN web management interface allows remote attackers to execute arbitrary code on affected devices. This affects organizations using ...
This vulnerability allows a remote authenticated attacker to bypass multi-factor authentication (MFA) on SonicWall SMA100 SSL-VPN virtual office portals by creating duplicate external domain users usi...
CVE-2021-20049 is a username enumeration vulnerability in SonicWall SMA100's password change API that allows unauthenticated attackers to determine valid usernames by analyzing server responses. This ...
A post-authentication remote command injection vulnerability in SonicWall SMA100 appliances allows authenticated attackers to execute arbitrary operating system commands on affected devices. This affe...
A relative path traversal vulnerability in SonicWall SMA appliances allows unauthenticated remote attackers to upload arbitrary files as a low-privileged 'nobody' user. This affects SMA 200, 210, 400,...
A vulnerability in SonicWall SMA100 Series appliances may expose partial user credential data in log files under certain conditions. This allows remote authenticated administrators to potentially view...
A reflected cross-site scripting (XSS) vulnerability in the SMA100 series web interface allows remote unauthenticated attackers to inject and execute arbitrary JavaScript code in victims' browsers. Th...
This vulnerability in SonicWall SMA100 SSLVPN devices uses a weak random number generator for backup codes, allowing attackers to potentially predict these codes. This affects organizations using vuln...