CVE-2023-0126

CVE-2023-0126

Vendor Sonicwall
Product SonicWall SMA1000
Weakness CWE-22 · Path traversal
Published January 19, 2023
Last update April 3, 2025

CVSS base score

What the vulnerability does

01Description

Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated attacker to access arbitrary files and directories stored outside the web root directory.

Key dates

02Disclosure timeline

January 19, 2023 CVE published
April 3, 2025 Record updated