Improper access control vulnerability has been identified in the SMA100 SSL-VPN virtual office portal, which in specific conditions could potentially enable a remote authenticated attacker to associate another user's MFA mobile application.
History

Thu, 05 Dec 2024 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Sonicwall
Sonicwall sma 200
Sonicwall sma 200 Firmware
Sonicwall sma 210
Sonicwall sma 210 Firmware
Sonicwall sma 400
Sonicwall sma 400 Firmware
Sonicwall sma 410
Sonicwall sma 410 Firmware
Sonicwall sma 500v
Sonicwall sma 500v Firmware
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:h:sonicwall:sma_200:-:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:sma_210:-:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:sma_400:-:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:sma_410:-:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:sma_500v:-:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sma_200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sma_210_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sma_400_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sma_410_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sma_500v_firmware:*:*:*:*:*:*:*:*
Vendors & Products Sonicwall
Sonicwall sma 200
Sonicwall sma 200 Firmware
Sonicwall sma 210
Sonicwall sma 210 Firmware
Sonicwall sma 400
Sonicwall sma 400 Firmware
Sonicwall sma 410
Sonicwall sma 410 Firmware
Sonicwall sma 500v
Sonicwall sma 500v Firmware

cve-icon MITRE

Status: PUBLISHED

Assigner: sonicwall

Published: 2024-02-23T23:37:06.715Z

Updated: 2024-08-28T20:22:52.086Z

Reserved: 2024-01-10T09:52:23.462Z

Link: CVE-2024-22395

cve-icon Vulnrichment

Updated: 2024-08-01T22:43:34.918Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-24T00:15:45.673

Modified: 2024-12-05T17:04:30.223

Link: CVE-2024-22395

cve-icon Redhat

No data.