Sonicwall Sonicos vulnerabilities
80 known vulnerabilities affecting sonicwall/sonicos.
Total CVEs
80
CISA KEV
3
actively exploited
Public exploits
6
Exploited in wild
11
Severity breakdown
CRITICAL14HIGH33MEDIUM33
Vulnerabilities
Page 3 of 4
CVE-2024-40764P3HIGHCVSS 7.5fixed in 6.5.4.v-21s-rc2457fixed in 7.0.1-5161+4 more2024-07-18
CVE-2024-40764 [HIGH] CWE-122 CVE-2024-40764: Heap-based buffer overflow vulnerability in the SonicOS IPSec VPN allows an unauthenticated remote a
Heap-based buffer overflow vulnerability in the SonicOS IPSec VPN allows an unauthenticated remote attacker to cause Denial of Service (DoS).
nvd
CVE-2021-20019P3HIGHCVSS 7.5≥ 7.0.0, < 7.0.0.376≥ 7.0.1, < 7.0.1-r1036+10 more2021-06-23
CVE-2021-20019 [HIGH] CWE-200 CVE-2021-20019: A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted
A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability.
nvd
CVE-2023-41713P3HIGHCVSS 7.5fixed in 7.0.1-5145fixed in 6.5.4.4-44v-21-2340+5 more2023-10-17
CVE-2023-41713 [HIGH] CWE-259 CVE-2023-41713: SonicOS Use of Hard-coded Password vulnerability in the 'dynHandleBuyToolbar' demo function.
SonicOS Use of Hard-coded Password vulnerability in the 'dynHandleBuyToolbar' demo function.
nvd
CVE-2021-20027P3HIGHCVSS 7.5≤ 7.0.1-r1262≤ 7.0.1-r.1219+13 more2021-06-14
CVE-2021-20027 [HIGH] CWE-120 CVE-2021-20027: A buffer overflow vulnerability in SonicOS allows a remote attacker to cause a Denial of Service (Do
A buffer overflow vulnerability in SonicOS allows a remote attacker to cause a Denial of Service (DoS) by sending a specially crafted request. This vulnerability affects SonicOS Gen5, Gen6, Gen7 platforms, and SonicOSv virtual firewalls.
nvd
CVE-2024-29012P3HIGHCVSS 7.5fixed in 7.0.1-5161≥ 7.1.1, < 7.1.1-7058+2 more2024-06-20
CVE-2024-29012 [HIGH] CWE-121 CVE-2024-29012: Stack-based buffer overflow vulnerability in the SonicOS HTTP server allows an authenticated remote
Stack-based buffer overflow vulnerability in the SonicOS HTTP server allows an authenticated remote attacker to cause Denial of Service (DoS) via sscanf function.
nvd
CVE-2019-7479P3HIGHCVSS 7.2≤ 5.9.1.12-4ov6.2.7.4-32n+7 more2019-12-31
CVE-2019-7479 [HIGH] CWE-285 CVE-2019-7479: A vulnerability in SonicOS allow authenticated read-only admin can elevate permissions to configurat
A vulnerability in SonicOS allow authenticated read-only admin can elevate permissions to configuration mode. This vulnerability affected SonicOS Gen 5 version 5.9.1.12-4o and earlier, Gen 6 version 6.2.7.4-32n, 6.5.1.4-4n, 6.5.2.3-4n, 6.5.3.3-3n, 6.2.7.10-3n, 6.4.1.0-3n, 6.5.3.3-3n, 6.5.1.9-4n and SonicOSv 6.5.0.2-8v_RC363 (VMWARE), 6.5.0.2.8v_RC367 (A
nvd
CVE-2023-39280P3MEDIUMCVSS 6.5fixed in 7.0.1-5145fixed in 6.5.4.4-44v-21-2340+5 more2023-10-17
CVE-2023-39280 [MEDIUM] CWE-121 CVE-2023-39280: SonicOS p ost-authentication Stack-Based Buffer Overflow vulnerability in the ssoStats-s.xml, ssoSt
SonicOS p
ost-authentication Stack-Based Buffer Overflow vulnerability in the ssoStats-s.xml, ssoStats-s.wri URL endpoints leads to a firewall crash.
nvd
CVE-2023-41712P3MEDIUMCVSS 6.5fixed in 7.0.1-5145fixed in 6.5.4.4-44v-21-2340+5 more2023-10-17
CVE-2023-41712 [MEDIUM] CWE-121 CVE-2023-41712: SonicOS post-authentication Stack-Based Buffer Overflow Vulnerability in the SSL VPN plainprefs.exp
SonicOS post-authentication Stack-Based Buffer Overflow Vulnerability in the SSL VPN plainprefs.exp URL endpoint leads to a firewall crash.
nvd
CVE-2023-39279P3MEDIUMCVSS 6.5fixed in 7.0.1-5145fixed in 6.5.4.4-44v-21-2340+5 more2023-10-17
CVE-2023-39279 [MEDIUM] CWE-121 CVE-2023-39279: SonicOS post-authentication Stack-Based Buffer Overflow vulnerability in the getPacketReplayData.jso
SonicOS post-authentication Stack-Based Buffer Overflow vulnerability in the getPacketReplayData.json URL endpoint leads to a firewall crash.
nvd
CVE-2023-39276P3MEDIUMCVSS 6.5fixed in 7.0.1-5145fixed in 6.5.4.4-44v-21-2340+5 more2023-10-17
CVE-2023-39276 [MEDIUM] CWE-121 CVE-2023-39276: SonicOS post-authentication stack-based buffer overflow vulnerability in the getBookmarkList.json U
SonicOS post-authentication stack-based buffer overflow vulnerability in the getBookmarkList.json URL endpoint leads to a firewall crash.
nvd
CVE-2023-41711P3MEDIUMCVSS 6.5fixed in 7.0.1-5145fixed in 6.5.4.4-44v-21-2340+5 more2023-10-17
CVE-2023-41711 [MEDIUM] CWE-121 CVE-2023-41711: SonicOS post-authentication Stack-Based Buffer Overflow Vulnerability in the sonicwall.exp, prefs.ex
SonicOS post-authentication Stack-Based Buffer Overflow Vulnerability in the sonicwall.exp, prefs.exp URL endpoints lead to a firewall crash.
nvd
CVE-2022-22275P3HIGHCVSS 7.5≥ 7.0.0.0, ≤ 7.0.1-5030-r2007≥ 7.0.0.0, ≤ 7.0.1.0-5030-1391+5 more2022-04-27
CVE-2022-22275 [HIGH] CWE-400 CVE-2022-22275: Improper Restriction of TCP Communication Channel in HTTP/S inbound traffic from WAN to DMZ bypassin
Improper Restriction of TCP Communication Channel in HTTP/S inbound traffic from WAN to DMZ bypassing security policy until TCP handshake potentially resulting in Denial of Service (DoS) attack if a target host is vulnerable.
nvd
CVE-2023-39277P3MEDIUMCVSS 6.5fixed in 7.0.1-5145fixed in 6.5.4.4-44v-21-2340+5 more2023-10-17
CVE-2023-39277 [MEDIUM] CWE-121 CVE-2023-39277: SonicOS post-authentication stack-based buffer overflow vulnerability in the sonicflow.csv and appf
SonicOS post-authentication stack-based buffer overflow vulnerability in the sonicflow.csv and appflowsessions.csv URL endpoints leads to a firewall crash.
nvd
CVE-2019-7487P3HIGHCVSS 7.8≤ 6.5.3.3v6.5.3.3 and earlier2019-12-19
CVE-2019-7487 [HIGH] CWE-428 CVE-2019-7487: Installation of the SonicOS SSLVPN NACagent 3.5 on the Windows operating system, an autorun value is
Installation of the SonicOS SSLVPN NACagent 3.5 on the Windows operating system, an autorun value is created does not put the path in quotes, so if a malicious binary by an attacker within the parent path could allow code execution.
nvd
CVE-2020-5141P3MEDIUMCVSS 6.5≤ 5.9.1.13≥ 6.0.0.0, ≤ 6.0.5.3+10 more2020-10-12
CVE-2020-5141 [MEDIUM] CWE-799 CVE-2020-5141: A vulnerability in SonicOS allows a remote unauthenticated attacker to brute force Virtual Assist ti
A vulnerability in SonicOS allows a remote unauthenticated attacker to brute force Virtual Assist ticket ID in the firewall SSLVPN service. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v and Gen 7 version SonicOS 7.0.0.0.
nvd
CVE-2023-39278P3MEDIUMCVSS 6.5fixed in 7.0.1-5145fixed in 6.5.4.4-44v-21-2340+5 more2023-10-17
CVE-2023-39278 [MEDIUM] CWE-121 CVE-2023-39278: SonicOS post-authentication user assertion failure leads to Stack-Based Buffer Overflow vulnerabilit
SonicOS post-authentication user assertion failure leads to Stack-Based Buffer Overflow vulnerability via main.cgi leads to a firewall crash.
nvd
CVE-2022-22278P3HIGHCVSS 7.5vSonicOS Gen 7 TZ-Series 7.0.1-5030-R2007 and earlier versions.vSonicOS Gen 7 NSa-Series 7.0.1-5030-R2007 and earlier versions.+2 more2022-04-27
CVE-2022-22278 [HIGH] CWE-770 CVE-2022-22278: A vulnerability in SonicOS CFS (Content filtering service) returns a large 403 forbidden HTTP respon
A vulnerability in SonicOS CFS (Content filtering service) returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service (DoS) attack
nvd
CVE-2024-22397P4HIGHCVSS 8.3v7.0.1-5145 and earlier versionsv7.1.1-7047 and earlier versions2024-03-14
CVE-2024-22397 [HIGH] CWE-79 CVE-2024-22397: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in the SonicOS
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in the SonicOS SSLVPN portal allows a remote authenticated attacker as a firewall 'admin' user to store and execute arbitrary JavaScript code.
nvd
CVE-2026-0205P4MEDIUMCVSS 6.8fixed in 6.5.5.2-28n≥ 7.0.0.0, ≤ 7.0.1-5169+6 more2026-04-29
CVE-2026-0205 [MEDIUM] CWE-35 CVE-2026-0205: A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with us
A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.
nvd
CVE-2020-5134P4MEDIUMCVSS 6.5≤ 6.0.5.3≥ 6.5.0.0, ≤ 6.5.1.11+5 more2020-10-12
CVE-2020-5134 [MEDIUM] CWE-125 CVE-2020-5134: A vulnerability in SonicOS allows an authenticated attacker to cause out-of-bound invalid file refer
A vulnerability in SonicOS allows an authenticated attacker to cause out-of-bound invalid file reference leads to a firewall crash. This vulnerability affected SonicOS Gen 6 version 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v and Gen 7 version 7.0.0.0.
nvd