Описание
A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges can inject a path traversal sequence to make any directory on the SMA appliance writable.
Затрагиваемое ПО
Sonicwall Sma 100 firmwareSonicwall Sma 100Sonicwall Sma 200 firmwareSonicwall Sma 200Sonicwall Sma 210 firmwareSonicwall Sma 210Sonicwall Sma 400 firmwareSonicwall Sma 400Sonicwall Sma 410 firmwareSonicwall Sma 410Sonicwall Sma 500v firmwareSonicwall Sma 500v
CVSS
| Балл | 8.8 — высокая |
| Вектор | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Источники
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0011