CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Sonicwall: >> Sma500v Security Vulnerabilities

CVE-2021-20049

A vulnerability in SonicWall SMA100 password change API allows a remote unauthenticated attacker to perform SMA100 username enumeration based on the server responses. This vulnerability impacts 10.2.1.2-24sv, 10.2.0.8-37sv and earlier 10.x versions.

CVSS Score

7.5

EPSS Score

0.005

Published

2021-12-23

CVE-2021-20050

An Improper Access Control Vulnerability in the SMA100 series leads to multiple restricted management APIs being accessible without a user login, potentially exposing configuration meta-data.

CVSS Score

7.5

EPSS Score

0.002

Published

2021-12-23

Page 1

Vulnerabilities

Vulnerable Software

Sonicwall: >> Sma500v Security Vulnerabilities

Products

Pricing

Contact Us