📦

nsa_4650

Vendor: sonicwall

Login to add this product to WatchStack
Actively Exploited 1 CISA KEV List
PoC / Exploits 1 Code Available
Total RCEs 9 Remote Access
Total CVEs 22 Total Indexed
Avg. EPSS 2.20% Exploit Prob.
Latest CVE CVE-2026-0206 Apr 29

Security Vulnerability Index

Page 2 / 3
6.5 CVSS
CVE-2023-39278
RCE

SonicOS post-authentication user assertion failure leads to Stack-Based Buffer Overflow vulnerability via main.cgi leads to a firewall crash.

EPSS: 0.48%
6.5 CVSS
CVE-2023-39277
RCE

SonicOS post-authentication stack-based buffer overflow vulnerability in the sonicflow.csv and appflowsessions.csv URL endpoints leads to a firewall crash.

EPSS: 0.48%
6.5 CVSS
CVE-2023-39276
RCE

SonicOS post-authentication stack-based buffer overflow vulnerability in the getBookmarkList.json URL endpoint leads to a firewall crash.

EPSS: 0.63%
8.8 CVSS
CVE-2023-1101

SonicOS SSLVPN improper restriction of excessive MFA attempts vulnerability allows an authenticated attacker to use excessive MFA codes.

EPSS: 0.35%
7.5 CVSS
CVE-2022-22278

A vulnerability in SonicOS CFS (Content filtering service) returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service (DoS) attack

EPSS: 0.27%
5.3 CVSS
CVE-2022-22277

A vulnerability in SonicOS SNMP service resulting exposure of Wireless Access Point sensitive information in cleartext.

EPSS: 0.16%
5.3 CVSS
CVE-2022-22276

A vulnerability in SonicOS SNMP service resulting exposure of sensitive information to an unauthorized user.

EPSS: 0.16%
7.5 CVSS
CVE-2022-22275

Improper Restriction of TCP Communication Channel in HTTP/S inbound traffic from WAN to DMZ bypassing security policy until TCP handshake potentially resulting in Denial of Service (DoS) attack if a target host is vulnerable.

EPSS: 0.26%
8.8 CVSS
CVE-2021-20048
RCE

A Stack-based buffer overflow in the SonicOS SessionID HTTP response header allows a remote authenticated attacker to cause Denial of Service (DoS) and potentially results in code execution in the firewall. This vulnerability affected SonicOS Gen 5, Gen 6 and Gen 7 firmware versions.

EPSS: 1.37%
8.8 CVSS
CVE-2021-20046
RCE

A Stack-based buffer overflow in the SonicOS HTTP Content-Length response header allows a remote authenticated attacker to cause Denial of Service (DoS) and potentially results in code execution in the firewall. This vulnerability affected SonicOS Gen 5, Gen 6 and Gen 7 firmware versions.

EPSS: 1.37%