CVE-2019-7481 - AskarLabs CVE Database

CVE-2019-7481

Vendor Sonicwall

Product SMA100

Weakness CWE-89 · SQLi

KEV Status Known Exploited

Ransomware Used in campaigns

Published December 17, 2019

Last update October 21, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Vulnerability in SonicWall SMA100 allow unauthenticated user to gain read-only access to unauthorized resources. This vulnerablity impacted SMA100 version 9.0.0.3 and earlier.

CISA mandated remediation

02CISA Required Action

Apply updates per vendor instructions.

Key dates

03Disclosure timeline

December 17, 2019 CVE published

October 21, 2025 Record updated

External resources

04References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2019-7481 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/89.html CISA KEV Reference https://nvd.nist.gov/vuln/detail/CVE-2019-7481

Related vulnerabilities

05Related CVE

CVE-2024-13496 GamiPress <= 7.3.1 - Unauthenticated SQL Injection via orderby Parameter CVE-2025-6009 kiCode111 like-girl ipAddPost.php sql injection CVE-2024-51615 WordPress WordPress Auction Plugin plugin <= 3.7 - SQL Injection vulnerability CVE-2024-10845 1000 Projects Bookstore Management System book_detail.php sql injection CVE-2025-1311 WooCommerce Multivendor Marketplace – REST API <= 1.6.2 - Authenticated (Subscriber+) SQL Injection