Primary

Context

SonicWall SMA100 Series Heap-Based Buffer Overflow Vulnerability Allowing Denial-of-Service or Potential Code Execution

Vulnerability

A heap-based buffer overflow vulnerability has been identified in the web interface of the SonicWall SMA100 series (including SMA 210, 410, and 500v) (versions 10.2.1.15-81sv and earlier). This vulnerability allows remote, unauthenticated attackers to cause a denial-of-service condition or potentially execute arbitrary code.

Impact

Exploitation of this vulnerability can lead to a denial-of-service condition or allow for arbitrary code execution on the affected system.

Remediation

Users are advised to upgrade to SonicWall SMA100 series versions 10.2.2.1-90sv and higher. Additionally, enabling multifactor authentication (MFA) and Web Application Firewall (WAF) on SMA100 can enhance security.

Added: Jul 23, 2025, 3:21 PM

Updated: Jul 23, 2025, 3:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SonicWall SMA100 Series Heap-Based Buffer Overflow Vulnerability Allowing Denial-of-Service or Potential Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating