Sonicwall Sonicos vulnerabilities
80 known vulnerabilities affecting sonicwall/sonicos.
Total CVEs
80
CISA KEV
3
actively exploited
Public exploits
6
Exploited in wild
11
Severity breakdown
CRITICAL14HIGH33MEDIUM33
Vulnerabilities
Page 4 of 4
CVE-2019-7474P4MEDIUMCVSS 6.5≤ 5.9.1.10v6.0.5.3-86o+8 more2019-04-02
CVE-2019-7474 [MEDIUM] CWE-248 CVE-2019-7474: A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave the
A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave the firewall in an unstable state by downloading certificate with specific extension. This vulnerability affected SonicOS Gen 5 version 5.9.1.10 and earlier, Gen 6 version 6.2.7.3, 6.5.1.3, 6.5.2.2, 6.5.3.1, 6.2.7.8, 6.4.0.0, 6.5.1.8, 6.0.5.3-86o and SonicOS
nvd
CVE-2024-29013P3MEDIUMCVSS 6.5fixed in 7.0.1-5161≥ 7.1.1, < 7.1.1-7058+2 more2024-06-20
CVE-2024-29013 [MEDIUM] CWE-122 CVE-2024-29013: Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote attac
Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote attacker to cause Denial of Service (DoS) via memcpy function.
nvd
CVE-2020-5143P4MEDIUMCVSS 5.3≤ 5.9.1.13≥ 6.0.0.0, ≤ 6.0.5.3+10 more2020-10-12
CVE-2020-5143 [MEDIUM] CWE-203 CVE-2020-5143: SonicOS SSLVPN login page allows a remote unauthenticated attacker to perform firewall management ad
SonicOS SSLVPN login page allows a remote unauthenticated attacker to perform firewall management administrator username enumeration based on the server responses. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v and Gen 7 version SonicOS 7.0.0.0.
nvd
CVE-2026-0206P4MEDIUMCVSS 4.9fixed in 6.5.5.2-28n≥ 7.0.0.0, ≤ 7.0.1-5169+6 more2026-04-29
CVE-2026-0206 [MEDIUM] CWE-121 CVE-2026-0206: A post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacke
A post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall.
nvd
CVE-2024-12806P4MEDIUMCVSS 4.9v6.5.4.15-117n and older versionsv7.0.1-5161 and older version+2 more2025-01-09
CVE-2024-12806 [MEDIUM] CWE-37 CVE-2024-12806: A post-authentication absolute path traversal vulnerability in SonicOS management allows a remote at
A post-authentication absolute path traversal vulnerability in SonicOS management allows a remote attacker to read an arbitrary file.
nvd
CVE-2026-0399P4MEDIUMCVSS 4.9fixed in 7.3.2-7010fixed in 8.2.0-8009+3 more2026-02-24
CVE-2026-0399 [MEDIUM] CWE-121 CVE-2026-0399: Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management i
Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint.
nvd
CVE-2020-5136P4MEDIUMCVSS 6.5≤ 5.9.1.13≥ 6.0.0.0, ≤ 6.0.5.3+10 more2020-10-12
CVE-2020-5136 [MEDIUM] CWE-120 CVE-2020-5136: A buffer overflow vulnerability in SonicOS allows an authenticated attacker to cause Denial of Servi
A buffer overflow vulnerability in SonicOS allows an authenticated attacker to cause Denial of Service (DoS) in the SSL-VPN and virtual assist portal, which leads to a firewall crash. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v and Gen 7 version 7.0.0.0.
nvd
CVE-2024-22396P4MEDIUMCVSS 5.3v7.0.1-5145 and earlier versionsv7.1.1-7047 and earlier versions+2 more2024-03-14
CVE-2024-22396 [MEDIUM] CWE-190 CVE-2024-22396: An Integer-based buffer overflow vulnerability in the SonicOS via IPSec allows a remote attacker in
An Integer-based buffer overflow vulnerability in the SonicOS via IPSec allows a remote attacker in specific conditions to cause Denial of Service (DoS) and potentially execute arbitrary code by sending a specially crafted IKEv2 payload.
nvd
CVE-2026-3439P4MEDIUMCVSS 4.9fixed in 7.3.2-7010fixed in 8.2.0-8009+3 more2026-03-04
CVE-2026-3439 [MEDIUM] CWE-121 CVE-2026-3439: A post-authentication Stack-based Buffer Overflow vulnerability in SonicOS certificate handling allo
A post-authentication Stack-based Buffer Overflow vulnerability in SonicOS certificate handling allows a remote attacker to crash a firewall.
nvd
CVE-2026-0400P4MEDIUMCVSS 4.9fixed in 7.3.2-7010fixed in 8.2.0-8009+3 more2026-02-24
CVE-2026-0400 [MEDIUM] CWE-134 CVE-2026-0400: A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a fir
A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a firewall.
nvd
CVE-2020-5142P4MEDIUMCVSS 6.1≤ 5.9.1.13≥ 6.0.0.0, ≤ 6.0.5.3+10 more2020-10-12
CVE-2020-5142 [MEDIUM] CWE-79 CVE-2020-5142: A stored cross-site scripting (XSS) vulnerability exists in the SonicOS SSLVPN web interface. A remo
A stored cross-site scripting (XSS) vulnerability exists in the SonicOS SSLVPN web interface. A remote unauthenticated attacker is able to store and potentially execute arbitrary JavaScript code in the firewall SSLVPN portal. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v
nvd
CVE-2018-5280P4MEDIUMCVSS 5.4v6.2.7.0v6.2.9.0+3 more2018-01-08
CVE-2018-5280 [MEDIUM] CWE-79 CVE-2018-5280: SonicWall SonicOS on Network Security Appliance (NSA) 2016 Q4 devices has XSS via the Configure SSO
SonicWall SonicOS on Network Security Appliance (NSA) 2016 Q4 devices has XSS via the Configure SSO screens.
nvd
CVE-2020-5132P4MEDIUMCVSS 5.3v6.5.4.6-79nvSonicOS 6.5.4.6-79n2020-09-30
CVE-2020-5132 [MEDIUM] CWE-200 CVE-2020-5132: SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misconfiguration leads to possible
SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misconfiguration leads to possible DNS flaw known as domain name collision vulnerability. When the users publicly display their organization’s internal domain names in the SSL-VPN authentication page, an attacker with knowledge of internal domain names can potentially take advantage of
nvd
CVE-2026-0401P4MEDIUMCVSS 4.9fixed in 7.3.2-7010fixed in 8.2.0-8009+3 more2026-02-24
CVE-2026-0401 [MEDIUM] CWE-476 CVE-2026-0401: A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to
A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to crash a firewall.
nvd
CVE-2020-5130P4MEDIUMCVSS 5.3≤ 6.5.4.4-44nv6.5.4.4-44n and earlier2020-07-17
CVE-2020-5130 [MEDIUM] CWE-20 CVE-2020-5130: SonicOS SSLVPN LDAP login request allows remote attackers to cause external service interaction (DNS
SonicOS SSLVPN LDAP login request allows remote attackers to cause external service interaction (DNS) due to improper validation of the request. This vulnerability impact SonicOS version 6.5.4.4-44n and earlier.
nvd
CVE-2022-22277P4MEDIUMCVSS 5.3vSonicOS Gen 7 TZ-Series 7.0.1-5030-R2007 and earlier versions.vSonicOS Gen 7 NSa-Series 7.0.1-5030-R2007 and earlier versions.+3 more2022-04-27
CVE-2022-22277 [MEDIUM] CWE-200 CVE-2022-22277: A vulnerability in SonicOS SNMP service resulting exposure of Wireless Access Point sensitive inform
A vulnerability in SonicOS SNMP service resulting exposure of Wireless Access Point sensitive information in cleartext.
nvd
CVE-2026-0402P4MEDIUMCVSS 4.9fixed in 7.3.2-7010fixed in 8.2.0-8009+3 more2026-02-24
CVE-2026-0402 [MEDIUM] CWE-125 CVE-2026-0402: A post-authentication Out-of-bounds Read vulnerability in SonicOS allows a remote attacker to crash
A post-authentication Out-of-bounds Read vulnerability in SonicOS allows a remote attacker to crash a firewall.
nvd
CVE-2022-22276P4MEDIUMCVSS 5.3vSonicOS Gen 7 TZ-Series 7.0.1-5030-R2007 and earlier versions.vSonicOS Gen 7 NSa-Series 7.0.1-5030-R2007 and earlier versions.+2 more2022-04-27
CVE-2022-22276 [MEDIUM] CWE-200 CVE-2022-22276: A vulnerability in SonicOS SNMP service resulting exposure of sensitive information to an unauthoriz
A vulnerability in SonicOS SNMP service resulting exposure of sensitive information to an unauthorized user.
nvd
CVE-2018-9867P4MEDIUMCVSS 5.5≥ 5.0.0.0, ≤ 5.9.1.10v6.0.5.3-86o+8 more2019-02-19
CVE-2018-9867 [MEDIUM] CWE-285 CVE-2018-9867: In SonicWall SonicOS, administrators without full permissions can download imported certificates. Oc
In SonicWall SonicOS, administrators without full permissions can download imported certificates. Occurs when administrators who are not in the SonicWall Administrators user group attempt to download imported certificates. This vulnerability affected SonicOS Gen 5 version 5.9.1.10 and earlier, Gen 6 version 6.2.7.3, 6.5.1.3, 6.5.2.2, 6.5.3.1, 6.2.7.8,
nvd
CVE-2015-3447P4MEDIUMCVSS 4.3≥ 6.0.0.0, ≤ 6.2.2.0v7.5.0.122015-04-29
CVE-2015-3447 [MEDIUM] CWE-79 CVE-2015-3447: Multiple cross-site scripting (XSS) vulnerabilities in macIpSpoofView.html in Dell SonicWall SonicOS
Multiple cross-site scripting (XSS) vulnerabilities in macIpSpoofView.html in Dell SonicWall SonicOS 7.5.0.12 and 6.x allow remote attackers to inject arbitrary web script or HTML via the (1) searchSpoof or (2) searchSpoofIpDet parameter.
nvd
← Previous4 / 4