Improper neutralization of Special Elements leading to OS Command Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products and older firmware versions of Secure Mobile Access (SMA) 100 series products, specifically the SRA appliances running all 8.x, 9.0.0.5-19sv and earlier versions and Secure Mobile Access (SMA) 100 series products running older firmware 9.0.0.9-26sv and earlier versions
2022-03-17T02:15:06.567
2024-11-21T06:46:32.127
Modified
CVSSv3.1: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | sonicwall | sma_200_firmware | ≤ 9.0.0.9-26sv | Yes |
| Hardware | sonicwall | sma_200 | - | No |
| Operating System | sonicwall | sma_210_firmware | ≤ 9.0.0.9-26sv | Yes |
| Hardware | sonicwall | sma_210 | - | No |
| Operating System | sonicwall | sma_400_firmware | ≤ 9.0.0.9-26sv | Yes |
| Hardware | sonicwall | sma_400 | - | No |
| Operating System | sonicwall | sma_410_firmware | ≤ 9.0.0.9-26sv | Yes |
| Hardware | sonicwall | sma_410 | - | No |
| Operating System | sonicwall | sma_500v_firmware | ≤ 9.0.0.9-26sv | Yes |
| Hardware | sonicwall | sma_500v | - | No |
| Operating System | sonicwall | sra_4200_firmware | ≤ 9.0.0.5-19sv | Yes |
| Hardware | sonicwall | sra_4200 | - | No |
| Operating System | sonicwall | sra_4600_firmware | ≤ 9.0.0.5-19sv | Yes |
| Hardware | sonicwall | sra_4600 | - | No |
| Operating System | sonicwall | sra_1600_firmware | ≤ 9.0.0.5-19sv | Yes |
| Hardware | sonicwall | sra_1600 | - | No |
| Operating System | sonicwall | sra_1200_firmware | ≤ 9.0.0.5-19sv | Yes |
| Hardware | sonicwall | sra_1200 | - | No |