Browse all 7 CVE security advisories affecting SMA. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SMA serves as a network security appliance providing unified threat management for enterprise environments. Historically, vulnerabilities have frequently included remote code execution, cross-site scripting, and privilege escalation flaws, with 7 CVEs documented to date. Notable security characteristics include its role as a perimeter defense system, though past incidents have involved authentication bypass weaknesses and insecure default configurations. The device's broad functionality as a gateway makes it a high-value target, with vulnerabilities potentially allowing network compromise or lateral movement. Security researchers have identified issues in both web management interfaces and underlying firmware, highlighting the need for regular patching and hardening of administrative access controls.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-4459 | SMA: Directory Traversal in Sunny Boy <3.10.27.R — Boy 3.0CWE-23 | 6.5 | Medium | 2025-08-27 |
This page lists every published CVE security advisory associated with SMA. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.