PT-2020-29: Denial of service and potential arbitrary code execution in SonicOS SonicOS, SonicOSv Severity:Severity level: High Impact: Denial of service and potential arbitrary code execution in SonicOS Access Vector: Remote CVSS v3.0 Base Score: 9,4 Vector: (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H) CVE-2020-5135Vulnerability description:The vulnerability, which is associated with buffer overflow in SonicOS, allows a remote attacker to cause a denial of service (DoS) and potentially execute arbitrary code.Advisory status: 26.06.2020 - Vendor notification date 12.10.2020 - Security advisory publication date (https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0010) Credits:The vulnerability was discovered by Nikita Abramov, Positive Research Center (Positive Technologies Company)