📦

nssp_15700

Vendor: sonicwall

Login to add this product to WatchStack
Actively Exploited 1 CISA KEV List
PoC / Exploits 4 Code Available
Total RCEs 4 Remote Access
Total CVEs 32 Total Indexed
Avg. EPSS 10.20% Exploit Prob.
Latest CVE CVE-2026-0206 Apr 29

Security Vulnerability Index

Page 2 / 4
Critical Target
9.8 CVSS
CVE-2024-53704
Exploit Found

An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.

EPSS: 93.86%
7.5 CVSS
CVE-2024-40764
RCE

Heap-based buffer overflow vulnerability in the SonicOS IPSec VPN allows an unauthenticated remote attacker to cause Denial of Service (DoS).

EPSS: 10.16%
8.8 CVSS
CVE-2023-1101

SonicOS SSLVPN improper restriction of excessive MFA attempts vulnerability allows an authenticated attacker to use excessive MFA codes.

EPSS: 0.35%
7.5 CVSS
CVE-2023-0656
RCE Exploit Found

A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.

EPSS: 31.49%
7.5 CVSS
CVE-2022-22278

A vulnerability in SonicOS CFS (Content filtering service) returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service (DoS) attack

EPSS: 0.27%
5.3 CVSS
CVE-2022-22277

A vulnerability in SonicOS SNMP service resulting exposure of Wireless Access Point sensitive information in cleartext.

EPSS: 0.16%
5.3 CVSS
CVE-2022-22276

A vulnerability in SonicOS SNMP service resulting exposure of sensitive information to an unauthorized user.

EPSS: 0.16%
9.8 CVSS
CVE-2022-22274
Exploit Found

A Stack-based buffer overflow vulnerability in the SonicOS via HTTP request allows a remote unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution in the firewall.

EPSS: 47.00%
8.8 CVSS
CVE-2021-20048
RCE

A Stack-based buffer overflow in the SonicOS SessionID HTTP response header allows a remote authenticated attacker to cause Denial of Service (DoS) and potentially results in code execution in the firewall. This vulnerability affected SonicOS Gen 5, Gen 6 and Gen 7 firmware versions.

EPSS: 1.37%
8.8 CVSS
CVE-2021-20046
RCE

A Stack-based buffer overflow in the SonicOS HTTP Content-Length response header allows a remote authenticated attacker to cause Denial of Service (DoS) and potentially results in code execution in the firewall. This vulnerability affected SonicOS Gen 5, Gen 6 and Gen 7 firmware versions.

EPSS: 1.37%