Lucene search

SonicWall SMA1000 Security Vulnerabilities

cve

CVE-2023-0126

Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated attacker to access arbitrary files and directories stored outside the web root...

7.5CVSS

7.5AI Score

0.279EPSS

2023-01-19 08:15 PM

cve

CVE-2022-22282

SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions incorrectly restricts access to a resource using HTTP connections from an unauthorized actor leading to Improper Access Control...

9.8CVSS

9.3AI Score

0.002EPSS

2022-05-13 08:15 PM

cve

CVE-2022-1701

SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions uses a shared and hard-coded encryption key to store...

7.5CVSS

7.9AI Score

0.001EPSS

2022-05-13 08:15 PM

cve

CVE-2022-1702

SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions accept a user-controlled input that specifies a link to an external site and uses that link in a redirect which leads to Open redirection...

6.1CVSS

6.8AI Score

0.001EPSS

2022-05-13 08:15 PM