CVE-2020-5134
First published: Mon Oct 12 2020(Updated: )
A vulnerability in SonicOS allows an authenticated attacker to cause out-of-bound invalid file reference leads to a firewall crash. This vulnerability affected SonicOS Gen 6 version 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v and Gen 7 version 7.0.0.0.
Credit: PSIRT@sonicwall.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SonicWall SonicOS | <=6.0.5.3 | |
| SonicWall SonicOS | >=6.5.0.0<=6.5.1.11 | |
| SonicWall SonicOS | =7.0.0.0 | |
| Sonicwall Sonicosv | <=6.5.4.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of this SonicOS vulnerability?
The vulnerability ID of this SonicOS vulnerability is CVE-2020-5134.
What is the severity level of CVE-2020-5134?
The severity level of CVE-2020-5134 is medium.
Which versions of SonicOS are affected by CVE-2020-5134?
SonicOS Gen 6 versions 6.5.1.12, 6.0.5.3, and SonicOSv 6.5.4.v, as well as Gen 7 version 7.0.0.0 are affected by CVE-2020-5134.
How can an attacker exploit CVE-2020-5134?
An authenticated attacker can exploit CVE-2020-5134 by causing an out-of-bound invalid file reference that leads to a firewall crash.
How can I fix CVE-2020-5134?
To fix CVE-2020-5134, update SonicOS to a version that contains the necessary patches provided by SonicWall.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sonicwall
- canonical/sonicwall sonicos
- version/sonicwall sonicos/6.0.5.3
- version/sonicwall sonicos/6.5.0.0
- version/sonicwall sonicos/6.5.1.11
- version/sonicwall sonicos/7.0.0.0
- canonical/sonicwall sonicosv
- version/sonicwall sonicosv/6.5.4.4