Описание
Heap-based buffer overflow vulnerability in the SonicWall SMA100 SSLVPN due to the use of strcpy. This allows remote authenticated attackers to cause Heap-based buffer overflow and potentially lead to code execution.
Затрагиваемое ПО
Sonicwall Sma 200 firmwareSonicwall Sma 200Sonicwall Sma 210 firmwareSonicwall Sma 210Sonicwall Sma 400 firmwareSonicwall Sma 400Sonicwall Sma 410 firmwareSonicwall Sma 410Sonicwall Sma 500v firmwareSonicwall Sma 500v
CVSS
| Балл | 7.5 — высокая |
| Вектор | CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
Источники
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018