A post-authentication arbitrary file read vulnerability impacting end-of-life Secure Remote Access (SRA) products and older firmware versions of Secure Mobile Access (SMA) 100 series products, specifically the SRA appliances running all 8.x, 9.0.0.5-19sv and earlier versions and Secure Mobile Access (SMA) 100 series products running older firmware 9.0.0.9-26sv and earlier versions
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| sonicwall | sra_1200_firmware | 9.0.0.5-19sv | - |
| sonicwall | sra_4200_firmware | 9.0.0.5-19sv | - |
| sonicwall | sma_210_firmware |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
5
Affected Products
2
References
sonicwall / sra_1200_firmware
| 9.0.0.10-28sv |
| - |
| sonicwall | sma_410_firmware | 9.0.0.10-28sv | - |
| sonicwall | sma_500v_firmware | 9.0.0.10-28sv | - |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Exploitability
Impact