{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-09T00:02:26.798","vulnerabilities":[{"cve":{"id":"CVE-2023-5970","sourceIdentifier":"PSIRT@sonicwall.com","published":"2023-12-05T21:15:07.667","lastModified":"2024-11-21T08:42:53.403","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Improper authentication in the SMA100 SSL-VPN virtual office portal allows a remote authenticated attacker to create an identical external domain user using accent characters, resulting in an MFA bypass."},{"lang":"es","value":"La autenticación incorrecta en el portal de oficina virtual SMA100 SSL-VPN permite que un atacante autenticado remoto cree un usuario de dominio externo idéntico utilizando caracteres acentuados, lo que resulta en una omisión de MFA."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"PSIRT@sonicwall.com","type":"Secondary","description":[{"lang":"en","value":"CWE-287"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sma_200_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"10.2.1.9-57sv","matchCriteriaId":"4674E718-3642-4042-82DE-49B845CF2DC6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sonicwall:sma_200:-:*:*:*:*:*:*:*","matchCriteriaId":"0B190266-AD6F-401B-9B2E-061CDD539236"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sma_210_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"10.2.1.9-57sv","matchCriteriaId":"5990A44B-DD34-4B32-B233-9062902EBE9A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sonicwall:sma_210:-:*:*:*:*:*:*:*","matchCriteriaId":"51587338-4A5F-41FC-9497-743F061947C2"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sma_400_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"10.2.1.9-57sv","matchCriteriaId":"C82E099E-AAE1-4BD3-B0C0-38326201586C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sonicwall:sma_400:-:*:*:*:*:*:*:*","matchCriteriaId":"9D728332-10C9-4508-B720-569D44E99543"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sma_410_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"10.2.1.9-57sv","matchCriteriaId":"E422E9C1-597B-468F-A634-23C54C1F7C74"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sonicwall:sma_410:-:*:*:*:*:*:*:*","matchCriteriaId":"9DFB8FBC-FFA4-4526-B306-D5692A43DC9E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sma_500v_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"10.2.1.9-57sv","matchCriteriaId":"B70F00FF-A14D-40F3-9381-817542DE6A7D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sonicwall:sma_500v:-:*:*:*:*:*:*:*","matchCriteriaId":"A6AD8A33-7CE4-4C66-9E23-F0C9C9638770"}]}]}],"references":[{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0018","source":"PSIRT@sonicwall.com","tags":["Vendor Advisory"]},{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0018","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}