Skip to main content

Netextender

7 CVEs product

Monthly

CVE-2024-29014 HIGH This Week

Vulnerability in SonicWall SMA100 NetExtender Windows (32 and 64-bit) client 10.2.339 and earlier versions allows an attacker to arbitrary code execution when processing an EPC Client update. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection RCE Sonicwall Microsoft Netextender
NVD
CVSS 3.1
8.8
EPSS
1.9%
CVE-2023-44220 HIGH This Week

SonicWall NetExtender Windows (32-bit and 64-bit) client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Microsoft Sonicwall Netextender
NVD
CVSS 3.1
7.3
EPSS
0.3%
CVE-2023-44218 HIGH This Week

A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Sonicwall Netextender
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-44217 HIGH This Week

A local privilege escalation vulnerability in SonicWall Net Extender MSI client for Windows 10.2.336 and earlier versions allows a local low-privileged user to gain system privileges through running. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Sonicwall Netextender
NVD GitHub
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-22281 HIGH This Week

A buffer overflow vulnerability in the SonicWall SSL-VPN NetExtender Windows Client (32 and 64 bit) in 10.2.322 and earlier versions, allows an attacker to potentially execute arbitrary code in the. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Microsoft Sonicwall Buffer Overflow Stack Overflow +1
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2020-5131 HIGH This Week

SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute code with the same privilege in the host operating system. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Sonicwall Microsoft Netextender
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2015-4173 MEDIUM This Month

Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before. Rated medium severity (CVSS 6.9). No vendor patch available.

Sonicwall Information Disclosure Dell Microsoft Netextender
NVD
CVSS 2.0
6.9
EPSS
0.3%
EPSS 2% CVSS 8.8
HIGH This Week

Vulnerability in SonicWall SMA100 NetExtender Windows (32 and 64-bit) client 10.2.339 and earlier versions allows an attacker to arbitrary code execution when processing an EPC Client update. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection RCE Sonicwall +2
NVD
EPSS 0% CVSS 7.3
HIGH This Week

SonicWall NetExtender Windows (32-bit and 64-bit) client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Microsoft Sonicwall +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Sonicwall +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

A local privilege escalation vulnerability in SonicWall Net Extender MSI client for Windows 10.2.336 and earlier versions allows a local low-privileged user to gain system privileges through running. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Sonicwall +1
NVD GitHub
EPSS 0% CVSS 7.8
HIGH This Week

A buffer overflow vulnerability in the SonicWall SSL-VPN NetExtender Windows Client (32 and 64 bit) in 10.2.322 and earlier versions, allows an attacker to potentially execute arbitrary code in the. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Microsoft Sonicwall +3
NVD
EPSS 1% CVSS 7.8
HIGH This Week

SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute code with the same privilege in the host operating system. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Sonicwall Microsoft +1
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before. Rated medium severity (CVSS 6.9). No vendor patch available.

Sonicwall Information Disclosure Dell +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy