- How many CVEs does SonicWall have?
- SonicWall has 248 published CVE records since 2000, including 44 in the last two years.
- How many SonicWall CVEs are in CISA KEV?
- Yes — 21 of SonicWall's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which SonicWall products have the most CVEs?
- The SonicWall products with the most published CVEs are SonicOS, sma 210 firmware, sma 410 firmware, global_management_system, SMA 500v.
- What are the most common weakness types in SonicWall CVEs?
- SonicWall's CVEs most often map to these CWE weakness types: CWE-121 (Stack-based Buffer Overflow), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')), CWE-122 (Heap-based Buffer Overflow).
- Are there public exploits for SonicWall vulnerabilities?
- Yes — 64 of SonicWall's CVEs have a known public exploit.
- How many critical SonicWall vulnerabilities are there?
- SonicWall has 55 critical and 112 high-severity CVEs.
- What is the average severity of SonicWall CVEs?
- The average CVSS base score across SonicWall's scored CVEs is 7.5.