Heap-based buffer overflow vulnerability in the SonicWall SMA100 SSLVPN due to the use of strcpy. This allows remote authenticated attackers to cause Heap-based buffer overflow and potentially lead to code execution.
References
| Link | Resource |
|---|---|
| https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
History
06 Nov 2025, 16:43
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Sonicwall sma 500v
Sonicwall sma 210 Firmware Sonicwall sma 200 Sonicwall Sonicwall sma 200 Firmware Sonicwall sma 400 Sonicwall sma 400 Firmware Sonicwall sma 500v Firmware Sonicwall sma 210 Sonicwall sma 410 Sonicwall sma 410 Firmware |
|
| References | () https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018 - Vendor Advisory | |
| CPE | cpe:2.3:h:sonicwall:sma_400:-:*:*:*:*:*:*:* cpe:2.3:o:sonicwall:sma_210_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sonicwall:sma_410:-:*:*:*:*:*:*:* cpe:2.3:h:sonicwall:sma_500v:-:*:*:*:*:*:*:* cpe:2.3:o:sonicwall:sma_410_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sonicwall:sma_500v_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sonicwall:sma_210:-:*:*:*:*:*:*:* cpe:2.3:o:sonicwall:sma_200_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sonicwall:sma_200:-:*:*:*:*:*:*:* cpe:2.3:o:sonicwall:sma_400_firmware:*:*:*:*:*:*:*:* |
Information
Published : 2024-12-05 14:15
Updated : 2025-11-06 16:43
NVD link : CVE-2024-40763
Mitre link : CVE-2024-40763
CVE.ORG link : CVE-2024-40763
JSON object : View
Products Affected
sonicwall
- sma_210_firmware
- sma_210
- sma_410
- sma_200
- sma_500v_firmware
- sma_200_firmware
- sma_400_firmware
- sma_400
- sma_410_firmware
- sma_500v
CWE
CWE-122
Heap-based Buffer Overflow