Auth bypass in Sonicwall Sma100

CVE-2023-5970

Improper authentication in the SMA100 SSL-VPN virtual office portal allows a remote authenticated attacker to create an identical external domain user using accent characters, resulting in an MFA bypass.

Vulnerability class: Broken Authentication

EPSS: 0.006 (68.9th percentile) — read the EPSS interpretation.

Affected products

Sonicwall Sma100 — versions 10.2.1.9-57sv and earlier versions

Weakness classification (CWE)

CWE-287 — Improper Authentication

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0018 (vendor-advisory)