{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-04T06:12:00.902","vulnerabilities":[{"cve":{"id":"CVE-2019-7477","sourceIdentifier":"PSIRT@sonicwall.com","published":"2019-04-02T18:30:25.257","lastModified":"2024-11-21T04:48:15.470","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in SonicWall SonicOS and SonicOSv TLS CBC Cipher allow remote attackers to obtain sensitive plaintext data when CBC cipher suites are enabled. This vulnerability affected SonicOS Gen 5 version 5.9.1.10 and earlier, Gen 6 version 6.2.7.3, 6.5.1.3, 6.5.2.2, 6.5.3.1, 6.2.7.8, 6.4.0.0, 6.5.1.8, 6.0.5.3-86o and SonicOSv 6.5.0.2-8v_RC363 (VMWARE), 6.5.0.2.8v_RC367 (AZURE), SonicOSv 6.5.0.2.8v_RC368 (AWS), SonicOSv 6.5.0.2.8v_RC366 (HYPER_V)."},{"lang":"es","value":"Una vulnerabilidad en el cifrado TLS CBC de SonicWall, SonicOS y SonicOSv permite que los atacantes remotos obtengan datos sensibles de texto plano cuando se habilitan las suites de cifrado CBC. Esta vulnerabilidad afectaba a SonicOS Gen 5, en versiones 5.9.1.10 y anteriores; Gen 6, en versiones 6.2.7.3, 6.5.1.3, 6.5.2.2, 6.5.3.1, 6.2.7.8, 6.4.0.0, 6.5.1.8 y 6.0.5.3-86o;  en SonicOSv 6.5.0.2.8v_RC368 (AWS) y en SonicOSv 6.5.0.2.8v_RC366 (HYPER_V)."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"PSIRT@sonicwall.com","type":"Secondary","description":[{"lang":"en","value":"CWE-327"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-327"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*","versionEndIncluding":"5.9.1.10","matchCriteriaId":"F0180CED-E6E5-4B09-8F73-D373283116AC"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicos:6.0.5.3-86o:*:*:*:*:*:*:*","matchCriteriaId":"6064655E-6480-4A34-843C-B29C72527111"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicos:6.2.7.3:*:*:*:*:*:*:*","matchCriteriaId":"5567146C-301D-469A-A3E3-1B70D5C9BDCC"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicos:6.2.7.8:*:*:*:*:*:*:*","matchCriteriaId":"A25F675E-CD61-46F0-92A2-218C956E0AD5"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicos:6.4.0.0:*:*:*:*:*:*:*","matchCriteriaId":"C30B8BB4-E0A7-4060-8EED-AE7E42811C86"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicos:6.5.1.3:*:*:*:*:*:*:*","matchCriteriaId":"93F31397-0142-439F-BFEC-C77F3D4B7825"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicos:6.5.1.8:*:*:*:*:*:*:*","matchCriteriaId":"095E558D-C241-45A4-AA4E-76B3621E341D"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicos:6.5.2.2:*:*:*:*:*:*:*","matchCriteriaId":"ACC28FE5-5064-4FEE-8EA0-047C8BA31601"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicos:6.5.3.1:*:*:*:*:*:*:*","matchCriteriaId":"248847AC-1910-448A-BA78-DC6BE942407E"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicosv:6.5.0.2-8v_rc363:*:*:*:*:vmware:*:*","matchCriteriaId":"D76E63B8-63A0-4283-9BB4-89139E4CADE4"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicosv:6.5.0.2.8v_rc366:*:*:*:*:hyper_v:*:*","matchCriteriaId":"78C8A7D6-30CB-40E1-BF67-0E660EF62DF7"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicosv:6.5.0.2.8v_rc367:*:*:*:*:azure:*:*","matchCriteriaId":"0C6F0305-2590-45EB-A0C0-3F2417EF57FF"},{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sonicosv:6.5.0.2.8v_rc368:*:*:*:*:aws:*:*","matchCriteriaId":"DDE650F8-9373-483F-847C-14987A1832E6"}]}]}],"references":[{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0003","source":"PSIRT@sonicwall.com","tags":["Vendor Advisory"]},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0003","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}