ГлавнаяУязвимости → CVE-2024-40763
7.5высокая

CVE-2024-40763

Описание

Heap-based buffer overflow vulnerability in the SonicWall SMA100 SSLVPN due to the use of strcpy. This allows remote authenticated attackers to cause Heap-based buffer overflow and potentially lead to code execution.

Затрагиваемое ПО
Sonicwall Sma 200 firmwareSonicwall Sma 200Sonicwall Sma 210 firmwareSonicwall Sma 210Sonicwall Sma 400 firmwareSonicwall Sma 400Sonicwall Sma 410 firmwareSonicwall Sma 410Sonicwall Sma 500v firmwareSonicwall Sma 500v
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018