sonicwall

sonicos

103 Versions 56 CVEs

Versions

Recent CVEs

CVE-2024-12802

SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN (User Principal Name) and SAM (Security Account Manager) account names when integrated with Microsoft Active Directory, allowing MFA to be configured independently for each login method and potentially enabling attackers to bypass MFA by exploiting the alternative account name.

CRITICAL Jan 09, 2025

CVE-2024-12806

A post-authentication absolute path traversal vulnerability in SonicOS management allows a remote attacker to read an arbitrary file.

MEDIUM Jan 09, 2025

CVE-2024-12805

A post-authentication format string vulnerability in SonicOS management allows a remote attacker to crash a firewall and potentially leads to code execution.

HIGH Jan 09, 2025

CVE-2024-12803

A post-authentication stack-based buffer overflow vulnerability in SonicOS management allows a remote attacker to crash a firewall and potentially leads to code execution.

HIGH Jan 09, 2025

CVE-2024-53706

A vulnerability in the Gen7 SonicOS Cloud platform NSv, allows a remote authenticated local low-privileged attacker to elevate privileges to `root` and potentially lead to code execution.

HIGH Jan 09, 2025

CVE-2024-53705

A Server-Side Request Forgery vulnerability in the SonicOS SSH management interface allows a remote attacker to establish a TCP connection to an IP address on any port when the user is logged in to the firewall.

HIGH Jan 09, 2025

CVE-2024-53704

An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.

HIGH Jan 09, 2025

CVE-2024-40762

Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in the SonicOS SSLVPN authentication token generator that, in certain cases, can be predicted by an attacker potentially resulting in authentication bypass.

CRITICAL Jan 09, 2025

sonicos

Versions

5.9.2.14-12o

0

6.5.4.14-109n

7.0.1-5151

7.0.1-5035

7.0.1-5145

6.5.4.13-105n

7.1.1-7047

6.5.4.4-44v-21-2395

6.5.4.4-44v-21-2340

sonicos 7.1.1-7040

7.1.1-7051

6.5.4.v_21s-1288 and earlier

7.0.1-5018-R1715 and earlier

8.0.0-8035

SonicOS 7.0.1-5095 and earlier

SonicOS NSv 6.5.4.4-44v-21-1551 and earlier

6.2.7.4-32n

6.2.7.8

7.0.1-R579 and earlier

SonicOS 7.0.1-5050 and earlier

SonicOS 6.5.4.11-97n and earlier

6.4.1.0-3n

6.5.4.15-117n and older versions

SonicOS-7.0.1-R1036 and earlier

5.9.1.13 and earlier

SonicOS 6.5.1.11-4n and earlier

6.2.7.10-3n

SonicOS 6.0.5.3 and earlier

5.9.2.14-12o and older versions

7.0.1-5151 and older versions

7.1.1-7058 and older versions

SonicOS-7.0.0.375 and earlier

SonicOS 6.5.1.12 and earlier

SonicOSv 6.5.4.4-44v-21-794 and earlier

SonicOS 6.5.4.6-79n

7.0.1-5161 and older versions

7.0.1-5119 and earlier versions

6.5.1.8

SonicOS-6.5.1.12-3n

7.1.1-7047 and earlier versions

6.2.7.3

6.5.1.9-4n

7.1.2-7019

SonicOS-6.5.4.7-83n

5.9.1.10 and earlier

6.5.4.7 and earlier

SonicOS Gen 7 NSsp-Series 7.0.1-5030-R780 and earlier versions.

7.0.1-5023-1349 and earlier

SonicOS Gen 7 NSv-Series 7.0.1.0-5030-1391 and earlier versions.

SonicOS 5.9.1.13-5n and earlier

6.5.2.3-4n

6.5.4.4-44v-21-2395 and older versions

6.0.5.3-86o

6.5.4.13-105n and earlier versions

6.5.4.12-101n and earlier versions

6.5.1.4-4n

6.5.4.4-44v-21-2079 and earlier versions

6.4.0.0

6.5.3.3-3n

7.0.1-5161 and older version

SonicOS 6.5.4.7 and earlier

5.9.1.12-4o

6.5.4.4-44v-21-2457 and older versions

SonicOS-7.0.0-R713 and earlier

SonicOS 5.9.1.7-2n and earlier

SonicOS 5.9.1.13 and earlier

SonicOS 7.0.1-R579 and earlier

7.1.1-7051 and older versions

6.5.2.2

SonicOS NSsp 7.0.1-5083 and earlier

SonicOSv-6.5.4.4-44v-21-955

SonicOSv 6.5.4.4-44v-21-1452 and earlier

7.0.1-R1262 and earlier

6.5.3.3 and earlier

SonicOS Gen 7 TZ-Series 7.0.1-5030-R2007 and earlier versions.

6.5.1.13-1n and earlier

SonicOS 7.0.1-R1262 and earlier