Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SonicWall — Vulnerabilities & Security Advisories 187

Browse all 187 CVE security advisories affecting SonicWall. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SonicWall provides network security appliances and cloud-based services primarily focused on firewall management, intrusion prevention, and email security for enterprise environments. Historically, its firmware has been susceptible to a wide array of critical vulnerabilities, including remote code execution, cross-site scripting, and privilege escalation flaws. These issues often stem from improper input validation, insecure default configurations, or insufficient access controls within the management interfaces. A significant notable incident involved the widespread exploitation of the "SonicWall Global Management System" vulnerability, which allowed attackers to gain unauthorized administrative access to thousands of devices globally. The high volume of recorded CVEs reflects ongoing challenges in securing complex network infrastructure software. While the company actively releases patches, the frequency of disclosed flaws highlights persistent risks associated with its hardware and software ecosystem, necessitating rigorous update protocols for administrators to mitigate potential breaches and data exfiltration attempts.

Top products by SonicWall: SonicOS SMA100 GMS SonicWall SMA100 SMA1000 Email Security NetExtender SonicWall Global VPN Client SMA 100 Series SonicWall SMA1000 SonicWall SRA/SMA100 Connect Tunnel Global Management System (GMS) Directory Services Connector SonicWall Switch SonicWall GMS SonicWall NetExtender SonicWall Email Security Email Security Appliance Email Security Virtual Appliance SonicWall NSM On-Prem SonicWall Analytics On-Prem SonicWall NetExtender Windows (32 and 64 bit) Client Capture Client
CVE IDTitleCVSSSeverityPublished
CVE-2023-34129 SonicWALL Analytics和GMS 路径遍历漏洞 — GMSCWE-22 6.5 -2023-07-13
CVE-2023-34128 SonicWALL Analytics和GMS 安全漏洞 — GMSCWE-260 9.8 -2023-07-13
CVE-2023-34127 SonicWALL Analytics和GMS 操作系统命令注入漏洞 — GMSCWE-78 7.8 -2023-07-13
CVE-2023-34126 SonicWALL Analytics和GMS 代码问题漏洞 — GMSCWE-434 8.8 -2023-07-13
CVE-2023-34125 SonicWall GMS and Analytics 路径遍历漏洞 — GMSCWE-27 6.5 -2023-07-13
CVE-2023-34124 SonicWALL Analytics和GMS 授权问题漏洞 — GMSCWE-305 9.8 -2023-07-13
CVE-2023-34123 SonicWALL GMS和SonicWALL Analytics 信任管理问题漏洞 — GMSCWE-321 9.8 -2023-07-12
CVE-2023-0656 SonicWALL SonicOS 缓冲区错误漏洞 — SonicOSCWE-121 7.5 -2023-03-02
CVE-2023-1101 SonicWALL SonicOS 安全漏洞 — SonicOSCWE-307 8.8 -2023-03-02
CVE-2023-0655 SonicWall Email 安全漏洞 — SonicWall Email SecurityCWE-209 5.3 -2023-02-14
CVE-2023-0126 SonicWALL SMA1000 series 路径遍历漏洞 — SonicWall SMA1000CWE-22 7.5 -2023-01-19
CVE-2021-20030 SonicWALL Global Management System 路径遍历漏洞 — SonicWall GMSCWE-22 9.1 -2022-10-13
CVE-2022-2915 SonicWALL SMA100 缓冲区错误漏洞 — SMA100CWE-122 8.8 -2022-08-26
CVE-2022-2324 SonicWALL Hosted Email Security 安全特征问题漏洞 — SonicWall Email SecurityCWE-358 9.8 -2022-07-29
CVE-2022-22280 SonicWALL Analytics On-Prem SQL注入漏洞 — SonicWall GMSCWE-89 9.8 -2022-07-29
CVE-2022-2323 SonicWALL Switch 命令注入漏洞 — SonicWall SwitchCWE-77 8.8 -2022-07-29
CVE-2022-1703 SonicWall SSL-VPN SMA100 series 操作系统命令注入漏洞 — SMA100CWE-78 8.8 -2022-06-03
CVE-2022-22282 SonicWall SMA1000 series 安全漏洞 — SonicWall SMA1000CWE-284 9.8 -2022-05-13
CVE-2022-22281 SonicWALL NetExtender Windows client 安全漏洞 — SonicWall NetExtender Windows (32 and 64 bit) ClientCWE-121 7.8 -2022-05-13
CVE-2022-1702 SonicWall SMA1000 series 输入验证错误漏洞 — SonicWall SMA1000CWE-601 6.1 -2022-05-13
CVE-2022-1701 SonicWall SMA1000 series 信任管理问题漏洞 — SonicWall SMA1000CWE-321 7.5 -2022-05-13
CVE-2021-20051 SonicWall Global VPN Client 代码问题漏洞 — SonicWall Global VPN ClientCWE-427 7.8 -2022-05-04
CVE-2022-22278 Sonicwall SonicOS 安全漏洞 — SonicOSCWE-770 7.5 -2022-04-27
CVE-2022-22277 Sonicwall SonicOS 信息泄露漏洞 — SonicOSCWE-200 5.3 -2022-04-27
CVE-2022-22276 SonicWall SonicOS 信息泄露漏洞 — SonicOSCWE-200 7.5 -2022-04-27
CVE-2022-22275 SonicWall SonicOS 资源管理错误漏洞 — SonicOSCWE-400 7.5 -2022-04-27
CVE-2022-22279 Sonicwall SonicWall SSLVPN 路径遍历漏洞 — SonicWall SRA/SMA100CWE-23 4.9 -2022-04-13
CVE-2022-22274 SonicOS 缓冲区错误漏洞 — SonicOSCWE-121 9.8 -2022-03-25
CVE-2022-22273 SonicWall SSLVPN 操作系统命令注入漏洞 — SonicWall SRA/SMA100CWE-78 9.8 -2022-03-17
CVE-2021-20048 SonicWall SonicOS 缓冲区错误漏洞 — SonicOSCWE-121 8.8 -2022-01-07

This page lists every published CVE security advisory associated with SonicWall. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.