CVE-2023-5970
N/A
N/A
Summary
Improper authentication in the SMA100 SSL-VPN virtual office portal allows a remote authenticated attacker to create an identical external domain user using accent characters, resulting in an MFA bypass.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SonicWall | SMA100 | 10.2.1.9-57sv and earlier versions | affected |
Weaknesses
- CWE-287: CWE-287 Improper Authentication
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.