漏洞描述
SonicWall 安全移动访问 (SMA) 是一个统一的安全访问网关,使组织能够随时随地提供对任何应用程序(包括托管和非托管)的访问。SMA 提供精细的访问控制、上下文感知设备授权、应用程序级 VPN 以及与最高级身份验证的完全集成。SMA 使组织能够迁移到云并轻松采用 BYOD。
SonicWall SMA 100 PreAuth / 文件读取漏洞 (CVE-2024-38475)
PoC代码
暂无相关漏洞推荐
- POC CVE-2019-7481: SonicWall SRA 4600 VPN - SQL Injection
- POC CVE-2021-20031: SonicWall SonicOS 7.0 - Open Redirect
- POC CVE-2021-20038: SonicWall SMA100 Stack - Buffer Overflow/Remote Code Execution
- POC CVE-2023-0126: SonicWall SMA1000 LFI
- POC CVE-2023-34124: SonicWall GMS and Analytics Web Services - Shell Injection
- POC CVE-2024-38475: Sonicwall - Pre-Authentication Arbitrary File Read
- POC CVE-2023-0126: SonicWall SMA1000 LFI
- POC sonicwall-ssl-vpn-rce: SonicWall SSL-VPN 远程命令执行漏洞
- POC CVE-2021-20021: SonicWall Email Security <= 10.0.9.x - Unauthenticated Admin Account Creation
- POC CVE-2023-34133: SonicWall GMS and Analytics - SQL Injection
- POC sonicwall-sslvpn-panel: SonicWall Virtual Office SSLVPN Panel
- SonicWall SMA1000 /images 目录遍历漏洞 (CVE-2023-0126)
- SonicWall SSL-VPN 任意文件读取漏洞