The following issues are unpatched vulnerabilities in SonicWall's SMA 100 Series. Testing was done using SMA 500v using firmware versions 9.0.0.11-31sv and 10.2.1.1-19sv. Because these two versions are substantially different under the hood, not all of the issues affect both versions. As such, for each issue I'll call out specifically which versions are affected. Note that no testing was done on the 10.2.0.x version line.
Vector | Auth | Affected | Component | Vulnerability | Vector |
---|---|---|---|---|---|
Remote | Unauthenticated | 10.2.1.1-19sv | httpd | Stack-based buffer overflow | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Remote | Authenticated | Both | Multiple cgi | Command injection | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
Remote | Unauthenticated | 10.2.1.1-19sv | sonicfiles | File upload path traversal | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L |
Remote | Unauthenticated | Both | sonicfiles | CPU exhaustion | AV:N |