Sonicwall: >> Sma 6200 Firmware >> 12.4.1 Security Vulnerabilities
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions incorrectly restricts access to a resource using HTTP connections from an unauthorized actor leading to Improper Access Control vulnerability.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-05-13
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions uses a shared and hard-coded encryption key to store data.
CVSS Score
7.5
EPSS Score
0.007
Published
2022-05-13
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions accept a user-controlled input that specifies a link to an external site and uses that link in a redirect which leads to Open redirection vulnerability.
CVSS Score
6.1
EPSS Score
0.011
Published
2022-05-13