Buffer overflow in Sonicwall Sma100

CVE-2024-45318

A vulnerability in the SonicWall SMA100 SSLVPN web management interface allows remote attackers to cause Stack-based buffer overflow and potentially lead to code execution.

Vulnerability class: Buffer Overflow

EPSS: 0.030 (86.9th percentile) — read the EPSS interpretation.

Affected products

Sonicwall Sma100 — versions 10.2.1.13-72sv and earlier versions

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018 (vendor-advisory)