CVE-2019-7483: SonicWall SMA100 Directory Traversal Vulnerability
First published: Thu Dec 19 2019(Updated: )
In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of a file on the server.
Credit: PSIRT@sonicwall.com PSIRT@sonicwall.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sonicwall Sma 100 Firmware | <=9.0.0.3 | |
| Sonicwall Sma 100 | ||
| SonicWall SMA100 | ||
| All of | ||
| Sonicwall Sma 100 Firmware | <=9.0.0.3 | |
| Sonicwall Sma 100 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-7483?
CVE-2019-7483 is a Directory Traversal vulnerability in SonicWall SMA100.
How does the SonicWall SMA100 Directory Traversal vulnerability work?
The SonicWall SMA100 Directory Traversal vulnerability allows an unauthenticated user to test for the presence of a file on the server.
Which software is affected by CVE-2019-7483?
The SonicWall SMA100 firmware up to and including version 9.0.0.3 is affected by CVE-2019-7483.
What is the severity of CVE-2019-7483?
CVE-2019-7483 has a severity level of high with a CVSS score of 7.5.
How can I fix CVE-2019-7483?
To fix CVE-2019-7483, update your SonicWall SMA100 firmware to a version higher than 9.0.0.3.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/severity
- agent/title
- agent/weakness
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/references
- agent/event
- agent/tags
- collector/nvd-cve
- source/NVD
- vendor/sonicwall
- canonical/sonicwall sma 100 firmware
- version/sonicwall sma 100 firmware/9.0.0.3
- canonical/sonicwall sma 100
- canonical/sonicwall sma100