CVE-2019-7482
published 2019-12-19CVE-2019-7482: Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted…
PriorityP261critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
8.82%
94.5th percentile
Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sonicwall | sma | — | — |
| sonicwall | sma100 | — | — |
| sonicwall | sma_100_firmware | <= 9.0.0.3 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerable component is the function within libSys.so on SonicWall SMA100; monitor for unexpected code execution or crashes originating from this library ↗
- ·Vulnerability affects SMA100 version 9.0.0.3 and earlier; ensure detection scope covers all unpatched devices running these versions ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
SonicWall
CVE-2019-7482: Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability imp
vendor_sonicwall·2019-12-19·CVSS 9.8
CVE-2019-7482 [CRITICAL] CWE-121 CVE-2019-7482: Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability imp
CVE-2019-7482: Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.
GHSA
GHSA-qwrr-w7m7-w9gh: Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys
ghsa_unreviewed·2022-05-24
CVE-2019-7482 [HIGH] GHSA-qwrr-w7m7-w9gh: Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys
Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2019-12-19
Published