Skip to main content
Live Webinar with SANS (June 25)— Agentic CTI Automation for Fun & ProfitRegister Free
Mallory
Back to vulnerabilities
HighCISA KEVExploited in the wildPublic exploit

Unauthorized read-only access in SonicWall SMA100 (SRA)

IdentifiersCVE-2019-7481CWE-284

CVE-2019-7481 is an access control vulnerability in SonicWall SMA100 (SRA) that allows an unauthenticated user to gain read-only access to unauthorized resources. The issue impacts SonicWall SMA100 version 9.0.0.3 and earlier.

Share:
For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial
ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Unauthenticated attackers can access otherwise unauthorized resources with read-only permissions, resulting in information disclosure/exposure of protected content accessible through the SMA100 appliance.

Mitigation

If you can’t patch tonight, do this now.

If patching is not possible, reduce exposure by decommissioning end-of-life SRA appliances; additionally, restrict access to the appliance/management interfaces to trusted IP ranges and reduce internet exposure where feasible.

Remediation

Patch, then assume compromise.

Upgrade/patch SonicWall SMA100 to a version newer than 9.0.0.3 that addresses CVE-2019-7481. For end-of-life SRA appliances, no patch is available and the device should be decommissioned/replaced.
PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType
SonicwallSma 100 Firmwareoperating_system

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

3 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

3 SOURCESView more in app
cyber security newsNews
Mar 2, 2026
Hackers Attacking SonicWall Firewalls from 4,000+ unique IP Addresses to Exploit Vulnerabilities

A vulnerability affecting SonicWall SRA appliances; the content states there are no available patches for impacted end-of-life devices, so removal/decommissioning is recommended.

Read more
greynoise blogNews
Feb 27, 2026
Active Reconnaissance Campaign Targets SonicWall Firewalls Through Commercial Proxy Infrastructure

A SonicWall SRA-related vulnerability explicitly called out as having no patches available on end-of-life appliances; the content recommends decommissioning/disconnecting affected SRA devices.

Read more
tenable blogNews
Dec 17, 2025
CVE-2025-40602: SonicWall Secure Mobile Access (SMA) 1000 Zero-Day Exploited

A SQL injection vulnerability in SonicWall SMA100.

Read more
What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.
Start free trial
Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware2

Malware families riding this exploit, with evidence and IOCs.

Detection signatures1

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES
MITRE CVE
cve.org · CVE-2019-7481
NVD
nvd.nist.gov/vuln/detail/CVE-2019-7481
MITRE CWE · CWE-284
cwe.mitre.org
Vendor Advisory
psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0016
US Government Resource
cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-7481