Sonicwall Sma 500V vulnerabilities
2 known vulnerabilities affecting sonicwall/sma_500v.
Total CVEs
2
CISA KEV
1
actively exploited
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2021-20034CRITICALCVSS 9.1PoC≤ 9.0.0.10-28sv≥ 10.2.0.0, ≤ 10.2.0.7-34sv+1 more2021-09-27
CVE-2021-20034 [CRITICAL] CWE-284 CVE-2021-20034: An improper access control vulnerability in SMA100 allows a remote unauthenticated attacker to bypas
An improper access control vulnerability in SMA100 allows a remote unauthenticated attacker to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to factory default settings.
nvd
CVE-2021-20035MEDIUMCVSS 6.5KEVfixed in 9.0.0.11-31sv≥ 10.2.0.0, < 10.2.0.8-37sv+1 more2021-09-27
CVE-2021-20035 [MEDIUM] CWE-78 CVE-2021-20035: Improper neutralization of special elements in the SMA100 management interface allows a remote authe
Improper neutralization of special elements in the SMA100 management interface allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user which potentially leads to DoS.
nvd