Sonicwall Sonicos vulnerabilities
80 known vulnerabilities affecting sonicwall/sonicos.
Total CVEs
80
CISA KEV
3
actively exploited
Public exploits
6
Exploited in wild
11
Severity breakdown
CRITICAL14HIGH33MEDIUM33
Vulnerabilities
Page 1 of 4
CVE-2024-53704P1CRITICALCVSS 9.8KEVPoCRansomware≥ 7.1.1-7040, ≤ 7.1.1-7058v7.1.2-7019+2 more2025-01-09
CVE-2024-53704 [CRITICAL] CWE-287 CVE-2024-53704: An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote atta
An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.
nvd
CVE-2024-40766P1CRITICALCVSS 9.8KEVRansomwarefixed in 5.9.2.14-13ofixed in 6.5.2.8-2n+5 more2024-08-23
CVE-2024-40766 [CRITICAL] CWE-284 CVE-2024-40766: An improper access control vulnerability has been identified in the SonicWall SonicOS management acc
An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash. This issue affects SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 devices running SonicOS 7.0.1-5035 and older versions
nvd
CVE-2020-5135P1CRITICALCVSS 9.8KEVRansomware≤ 6.0.5.3≥ 6.5.0.0, ≤ 6.5.1.11+7 more2020-10-12
CVE-2020-5135 [CRITICAL] CWE-120 CVE-2020-5135: A buffer overflow vulnerability in SonicOS allows a remote attacker to cause Denial of Service (DoS)
A buffer overflow vulnerability in SonicOS allows a remote attacker to cause Denial of Service (DoS) and potentially execute arbitrary code by sending a malicious request to the firewall. This vulnerability affected SonicOS Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v and Gen 7 version 7.0.0.0.
nvd
CVE-2019-12255P1CRITICALCVSS 9.8ExploitedPoC≥ 5.9.0.0, ≤ 5.9.0.7≥ 5.9.1.0., ≤ 5.9.1.12+14 more2019-08-09
CVE-2019-12255 [CRITICAL] CWE-120 CVE-2019-12255: Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET securi
Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow.
nvd
CVE-2022-22274P1CRITICALCVSS 9.8ExploitedPoC≤ 7.0.1-5050≤ 7.0.1-r579+3 more2022-03-25
CVE-2022-22274 [CRITICAL] CWE-121 CVE-2022-22274: A Stack-based buffer overflow vulnerability in the SonicOS via HTTP request allows a remote unauthen
A Stack-based buffer overflow vulnerability in the SonicOS via HTTP request allows a remote unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution in the firewall.
nvd
CVE-2023-0656P2HIGHCVSS 7.5ExploitedPoC≤ 7.0.1-5111≤ 7.0.1-5083+4 more2023-03-02
CVE-2023-0656 [HIGH] CWE-121 CVE-2023-0656: A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker
A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.
nvd
CVE-2025-40600P1CRITICALCVSS 9.8Exploited≥ 7.1.1-7040, < 7.3.0-7012v7.2.0-7015 and older versions2025-07-29
CVE-2025-40600 [CRITICAL] CWE-134 CVE-2025-40600: Use of Externally-Controlled Format String vulnerability in the SonicOS SSL VPN interface allows a r
Use of Externally-Controlled Format String vulnerability in the SonicOS SSL VPN interface allows a remote unauthenticated attacker to cause service disruption.
nvd
CVE-2024-12802P1CRITICALCVSS 9.1ExploitedRansomwarev6.5.4.4-44v-21-2457 and older versionsv6.5.4.15-117n and older versions+4 more2025-01-09
CVE-2024-12802 [CRITICAL] CWE-305 CVE-2024-12802: SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of
SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN (User Principal Name) and SAM (Security Account Manager) account names when integrated with Microsoft Active Directory, allowing MFA to be configured independently for each login method and potentially enabling attackers to bypass MFA by exploiti
nvd
CVE-2025-40601P2HIGHCVSS 7.5Exploited≥ 7.1.1-7040, < 7.3.1-7013fixed in 8.0.3-8011+2 more2025-11-20
CVE-2025-40601 [HIGH] CWE-121 CVE-2025-40601: A Stack-based buffer overflow vulnerability in the SonicOS SSLVPN service allows a remote unauthenti
A Stack-based buffer overflow vulnerability in the SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.
nvd
CVE-2019-12263P2HIGHCVSS 8.1Exploited≥ 5.9.0.0, ≤ 5.9.0.7≥ 5.9.1.0., ≤ 5.9.1.12+14 more2019-08-09
CVE-2019-12263 [HIGH] CWE-362 CVE-2019-12263: Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). There is
Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). There is an IPNET security vulnerability: TCP Urgent Pointer state confusion due to race condition.
nvd
CVE-2025-32818P2HIGHCVSS 7.5Exploited≥ 7.1.1-7040, ≤ 7.1.3-7015v8.0.0-8037 and earlier versions2025-04-23
CVE-2025-32818 [HIGH] CWE-476 CVE-2025-32818: A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a rem
A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker to crash the firewall, potentially leading to a Denial-of-Service (DoS) condition.
nvd
CVE-2019-12258P3HIGHCVSS 7.5PoC≥ 5.9.0.0, ≤ 5.9.0.7≥ 5.9.1.0., ≤ 5.9.1.12+14 more2019-08-09
CVE-2019-12258 [HIGH] CWE-384 CVE-2019-12258: Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET securi
Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET security vulnerability: DoS of TCP connection via malformed TCP options.
nvd
CVE-2019-12257P2HIGHCVSS 8.8≥ 5.9.0.0, ≤ 5.9.0.7≥ 5.9.1.0., ≤ 5.9.1.12+14 more2019-08-09
CVE-2019-12257 [HIGH] CWE-120 CVE-2019-12257: Wind River VxWorks 6.6 through 6.9 has a Buffer Overflow in the DHCP client component. There is an I
Wind River VxWorks 6.6 through 6.9 has a Buffer Overflow in the DHCP client component. There is an IPNET security vulnerability: Heap overflow in DHCP Offer/ACK parsing inside ipdhcpc.
nvd
CVE-2019-12256P2CRITICALCVSS 9.8≥ 5.9.0.0, ≤ 5.9.0.7≥ 5.9.1.0., ≤ 5.9.1.12+14 more2019-08-09
CVE-2019-12256 [CRITICAL] CWE-120 CVE-2019-12256: Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the IPv4 component. There is an IPNET securi
Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the IPv4 component. There is an IPNET security vulnerability: Stack overflow in the parsing of IPv4 packets’ IP options.
nvd
CVE-2021-20031P3MEDIUMCVSS 6.1PoC≤ 7.0.1-r1262≤ 7.0.1-r1283+13 more2021-10-12
CVE-2021-20031 [MEDIUM] CWE-601 CVE-2021-20031: A Host Header Redirection vulnerability in SonicOS potentially allows a remote attacker to redirect
A Host Header Redirection vulnerability in SonicOS potentially allows a remote attacker to redirect firewall management users to arbitrary web domains.
nvd
CVE-2019-12260P2CRITICALCVSS 9.8≥ 5.9.0.0, ≤ 5.9.0.7≥ 5.9.1.0., ≤ 5.9.1.12+14 more2019-08-09
CVE-2019-12260 [CRITICAL] CWE-120 CVE-2019-12260: Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 2 of 4). This is an
Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 2 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer state confusion caused by a malformed TCP AO option.
nvd
CVE-2024-40762P2CRITICALCVSS 9.8v7.1.1-7058 and older versionsv7.1.2-7019+1 more2025-01-09
CVE-2024-40762 [CRITICAL] CWE-338 CVE-2024-40762: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in the SonicOS SSLVPN authentica
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in the SonicOS SSLVPN authentication token generator that, in certain cases, can be predicted by an attacker potentially resulting in authentication bypass.
nvd
CVE-2024-22394P2CRITICALCVSS 9.8v7.1.1-7040vSonicOS 7.1.1-70402024-02-08
CVE-2024-22394 [CRITICAL] CWE-287 CVE-2024-22394: An improper authentication vulnerability has been identified in SonicWall SonicOS SSL-VPN feature, w
An improper authentication vulnerability has been identified in SonicWall SonicOS SSL-VPN feature, which in specific conditions could allow a remote attacker to bypass authentication.
This issue affects only firmware version SonicOS 7.1.1-7040.
nvd
CVE-2021-3450P3HIGHCVSS 7.4≤ 7.0.1-r14562021-03-25
CVE-2021-3450 [HIGH] CWE-295 CVE-2021-3450: The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation
nvd
CVE-2019-12261P3CRITICALCVSS 9.8≥ 5.9.0.0, ≤ 5.9.0.7≥ 5.9.1.0., ≤ 5.9.1.12+14 more2019-08-09
CVE-2019-12261 [CRITICAL] CWE-120 CVE-2019-12261: Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 3 of 4).
Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 3 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer state confusion during connect() to a remote host.
nvd
1 / 4Next →