CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-0126

Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated attacker to access arbitrary files and directories stored outside the web root directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.925

EPSS Ranking 99.7%

CVSS Severity

CVSS v3 Score 7.5

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0001
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0001

Products affected by CVE-2023-0126

Sonicwall » Sma1000 » Version: N/A

cpe:2.3:h:sonicwall:sma1000:-
Sonicwall » Sma1000 Firmware » Version: 12.4.2

cpe:2.3:o:sonicwall:sma1000_firmware:12.4.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-0126

Products

Pricing

Contact Us