{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T13:22:19.465","vulnerabilities":[{"cve":{"id":"CVE-2025-40599","sourceIdentifier":"PSIRT@sonicwall.com","published":"2025-07-23T14:15:33.090","lastModified":"2025-11-06T16:41:11.763","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An authenticated arbitrary file upload vulnerability exists in the SMA 100 series web management interface. A remote attacker with administrative privileges can exploit this flaw to upload arbitrary files to the system, potentially leading to remote code execution."},{"lang":"es","value":"Existe una vulnerabilidad de carga arbitraria de archivos autenticados en la interfaz de administración web de la serie SMA 100. Un atacante remoto con privilegios administrativos puede explotar esta vulnerabilidad para cargar archivos arbitrarios al sistema, lo que podría provocar la ejecución remota de código."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.3,"impactScore":6.0}]},"weaknesses":[{"source":"PSIRT@sonicwall.com","type":"Secondary","description":[{"lang":"en","value":"CWE-434"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sma_210_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"10.2.2.1-90sv","matchCriteriaId":"786BB26D-B943-4564-B8CC-3260EF2AACED"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sonicwall:sma_210:-:*:*:*:*:*:*:*","matchCriteriaId":"51587338-4A5F-41FC-9497-743F061947C2"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sma_410_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"10.2.2.1-90sv","matchCriteriaId":"057D8219-D4F0-49FB-8EE4-6BBBDAED49DB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sonicwall:sma_410:-:*:*:*:*:*:*:*","matchCriteriaId":"9DFB8FBC-FFA4-4526-B306-D5692A43DC9E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sonicwall:sma_500v_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"10.2.2.1-90sv","matchCriteriaId":"3418E737-CB38-4736-9725-AD05A1AB29CF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sonicwall:sma_500v:-:*:*:*:*:*:*:*","matchCriteriaId":"A6AD8A33-7CE4-4C66-9E23-F0C9C9638770"}]}]}],"references":[{"url":"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0014","source":"PSIRT@sonicwall.com","tags":["Vendor Advisory"]}]}}]}