Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2019-7481
Analyzed
More InfoOfficial Page
Source-PSIRT@sonicwall.com
View Known Exploited Vulnerability (KEV) details
Published At-17 Dec, 2019 | 23:15
Updated At-31 Oct, 2025 | 12:42

Vulnerability in SonicWall SMA100 allow unauthenticated user to gain read-only access to unauthorized resources. This vulnerablity impacted SMA100 version 9.0.0.3 and earlier.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
2021-11-032022-05-03SonicWall SMA100 SQL Injection VulnerabilityApply updates per vendor instructions.
Date Added: 2021-11-03
Due Date: 2022-05-03
Vulnerability Name: SonicWall SMA100 SQL Injection Vulnerability
Required Action: Apply updates per vendor instructions.
Metrics
TypeVersionBase scoreBase severityVector
Primary3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Secondary3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Primary2.05.0MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Type: Primary
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Type: Secondary
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Type: Primary
Version: 2.0
Base score: 5.0
Base severity: MEDIUM
Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N
CPE Matches
SonicWall Inc.
sonicwall
>>sma_100_firmware>>Versions before 9.0.0.4(exclusive)
cpe:2.3:o:sonicwall:sma_100_firmware:*:*:*:*:*:*:*:*
SonicWall Inc.
sonicwall
>>sma_100>>-
cpe:2.3:h:sonicwall:sma_100:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-89SecondaryPSIRT@sonicwall.com
CWE-89Primarynvd@nist.gov
CWE ID: CWE-89
Type: Secondary
Source: PSIRT@sonicwall.com
CWE ID: CWE-89
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0016PSIRT@sonicwall.com
Vendor Advisory
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0016af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-7481134c704f-9b21-4f2e-91b3-4a467353bcc0
US Government Resource
Hyperlink: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0016
Source: PSIRT@sonicwall.com
Resource:
Vendor Advisory
Hyperlink: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0016
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Vendor Advisory
Hyperlink: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-7481
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Resource:
US Government Resource
Change History
0Changes found
Details not found