SMA 100 Series and remote access products running unpatched firmware 9.0.11-31sv and earlier, 10.2.8-37sv, 102.1.1-19sv and 10.1. A majority of devices are affected by eight critical-to-medium-severity vulnerabilities even after enabling their web application firewall. The most severe of the flaws are a set of unauthenticated heap- and stack-based buffer overflow vulnerabilities, says Claire Tills, a senior research engineer.”]
Source: https://www.cuinfosecurity.com/sonicwall-sma-100-series-users-urged-to-apply-latest-fix-a-18089