← Back

Directory Services Connector

directory_services_connector

Vendor: Sonicwall • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-44219
1Sonicwall
1Directory Services Connector
Nov 21, 2024
Oct 27, 2023
N/A· v4
7.8 HIGH· v3
N/A· v2
A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recover...Show more
A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature.Show less
CVE-2020-5148
1Sonicwall
1Directory Services Connector
Nov 21, 2024
Mar 5, 2021
N/A· v4
8.2 HIGH· v3
6.4 MEDIUM· v2
SonicWall SSO-agent default configuration uses NetAPI to probe the associated IP's in the network, this client probing method allows a potential attacker to capture the password hash of the privileged user and potentiall...Show more
SonicWall SSO-agent default configuration uses NetAPI to probe the associated IP's in the network, this client probing method allows a potential attacker to capture the password hash of the privileged user and potentially forces the SSO Agent to authenticate allowing an attacker to bypass firewall access controls.Show less