CVE-2021-20045

EPSS 25.2%CWE-120

A buffer overflow vulnerability in SMA100 sonicfiles RAC_COPY_TO (RacNumber 36) method allows a remote unauthenticated attacker to potentially execute code as the 'nobody' user in the appliance. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances.

Produtos afetados

SonicWall · SonicWall SMA100

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0026