Known Vulnerabilities for Sonicos by Sonicwall
Listed below are 10 of the newest known vulnerabilities associated with "Sonicos" by "Sonicwall".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-22275 | Improper Restriction of TCP Communication Channel in HTTP/S inbound traffic from WAN to DMZ bypassing security policy until T... | 7.5 - HIGH | 2022-04-27 | 2022-05-12 |
| CVE-2022-22274 | A Stack-based buffer overflow vulnerability in the SonicOS via HTTP request allows a remote unauthenticated attacker to cause... | 9.8 - CRITICAL | 2022-03-25 | 2022-03-31 |
| CVE-2021-20048 | A Stack-based buffer overflow in the SonicOS SessionID HTTP response header allows a remote authenticated attacker to cause D... | 8.8 - HIGH | 2022-01-10 | 2022-01-19 |
| CVE-2021-20046 | A Stack-based buffer overflow in the SonicOS HTTP Content-Length response header allows a remote authenticated attacker to ca... | 8.8 - HIGH | 2022-01-10 | 2022-01-19 |
| CVE-2021-20031 | A Host Header Redirection vulnerability in SonicOS potentially allows a remote attacker to redirect firewall management users... | 6.1 - MEDIUM | 2021-10-12 | 2021-10-19 |
| CVE-2021-20027 | A buffer overflow vulnerability in SonicOS allows a remote attacker to cause a Denial of Service (DoS) by sending a specially... | 7.5 - HIGH | 2021-06-14 | 2021-09-13 |
| CVE-2021-20019 | A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can po... | 7.5 - HIGH | 2021-06-23 | 2022-08-05 |
| CVE-2021-3450 | The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is... | 7.4 - HIGH | 2021-03-25 | 2023-11-07 |
| CVE-2021-3449 | An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 r... | 5.9 - MEDIUM | 2021-03-25 | 2023-11-07 |
| CVE-2020-5130 | SonicOS SSLVPN LDAP login request allows remote attackers to cause external service interaction (DNS) due to improper validat... | 5.3 - MEDIUM | 2020-07-17 | 2020-07-22 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Sonicwall | Sonicos | 7.5.0.12 | All | All | All |
| Operating System | Sonicwall | Sonicos | 7.0.0.0 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.4.7 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.4.6-79n | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.4.5 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.4.4-44n | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.4.4 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.4.3 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.4.0 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.3.3 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.2.1 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.1.5 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.1.3 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.5.1.11 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.2.9.2 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.2.9.1 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.2.9.0 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.2.7.5 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.2.2.0 | All | All | All |
| Operating System | Sonicwall | Sonicos | 6.0.5.3 | All | All | All |