PT-2020-18276 · Sonicwall · Sonicos Gen 7+3
Nikita Abramov
·
Published
2020-10-12
·
Updated
2020-10-23
·
CVE-2020-5137
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
SonicOS Gen 5 versions 5.9.1.7 through 5.9.1.13
SonicOS Gen 6 versions 6.0.5.3 through 6.5.4.7
SonicOSv version 6.5.4.v
SonicOS Gen 7 version 7.0.0.0
Description
A buffer overflow issue in SonicOS allows a remote unauthenticated attacker to cause a Denial of Service (DoS) on the firewall SSLVPN service, leading to a firewall crash.
Recommendations
For SonicOS Gen 5 versions 5.9.1.7 through 5.9.1.13, update to a version that fixes the buffer overflow vulnerability.
For SonicOS Gen 6 versions 6.0.5.3 through 6.5.4.7, update to a version that fixes the buffer overflow vulnerability.
For SonicOSv version 6.5.4.v, update to a version that fixes the buffer overflow vulnerability.
For SonicOS Gen 7 version 7.0.0.0, update to a version that fixes the buffer overflow vulnerability.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sonicos Gen 5
Sonicos Gen 6
Sonicos Gen 7
Sonicos