Sonicwall Sma100 vulnerabilities

CVE-2019-7482 [CRITICAL] CWE-121 CVE-2019-7482: Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.

CVE-2019-7486 [HIGH] CWE-94 CVE-2019-7486: Code injection in SonicWall SMA100 allows an authenticated user to execute arbitrary code in viewcac Code injection in SonicWall SMA100 allows an authenticated user to execute arbitrary code in viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.4 and earlier.

CVE-2019-7485 [HIGH] CWE-120 CVE-2019-7485: Buffer overflow in SonicWall SMA100 allows an authenticated user to execute arbitrary code in DEAReg Buffer overflow in SonicWall SMA100 allows an authenticated user to execute arbitrary code in DEARegister CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.

CVE-2019-7483 [HIGH] CWE-22 CVE-2019-7483: In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect C In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of a file on the server.

CVE-2019-7484 [MEDIUM] CWE-89 CVE-2019-7484: Authenticated SQL Injection in SonicWall SMA100 allow user to gain read-only access to unauthorized Authenticated SQL Injection in SonicWall SMA100 allow user to gain read-only access to unauthorized resources using viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and earlier.

CVE-2019-7481 [HIGH] CWE-89 CVE-2019-7481: Vulnerability in SonicWall SMA100 allow unauthenticated user to gain read-only access to unauthorize Vulnerability in SonicWall SMA100 allow unauthenticated user to gain read-only access to unauthorized resources. This vulnerablity impacted SMA100 version 9.0.0.3 and earlier.