A post-authentication arbitrary file read vulnerability impacting end-of-life Secure Remote Access (SRA) products and older firmware versions of Secure Mobile Access (SMA) 100 series products, specifically the SRA appliances running all 8.x, 9.0.0.5-19sv and earlier versions and Secure Mobile Access (SMA) 100 series products running older firmware 9.0.0.9-26sv and earlier versions
2022-04-13T06:15:07.177
2024-11-21T06:46:33.013
Modified
CVSSv3.1: 4.9 (MEDIUM)
AV:N/AC:L/Au:S/C:P/I:N/A:N
8.0
2.9
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Operating System | sonicwall | sra_1200_firmware | ≤ 9.0.0.5-19sv | Yes |
Hardware | sonicwall | sra_1200 | - | No |
Operating System | sonicwall | sra_4200_firmware | ≤ 9.0.0.5-19sv | Yes |
Hardware | sonicwall | sra_4200 | - | No |
Operating System | sonicwall | sma_210_firmware | < 9.0.0.10-28sv | Yes |
Hardware | sonicwall | sma_210 | - | No |
Operating System | sonicwall | sma_410_firmware | < 9.0.0.10-28sv | Yes |
Hardware | sonicwall | sma_410 | - | No |
Operating System | sonicwall | sma_500v_firmware | < 9.0.0.10-28sv | Yes |
Hardware | sonicwall | sma_500v | - | No |