Description

Sonicwall SMA 100 allows an unauthenticated attacker to interact with hosts on the internal network which is otherwise not accessible externally.

Remediation

Upgrade to the latest version of Sonicwall

References

CVE-2021-20038..42: SonicWall SMA 100 Multiple Vulnerabilities

Related Vulnerabilities

Oracle Weblogic Async Component Deserialization RCE CVE-2019-2725

Apache Struts2 remote code execution vulnerability

GhostScript RCE (Remote Code Execution)

Adobe Experience Manager Misconfiguration

Oracle Access Manager 'opensso' Deserialization RCE (CVE-2021-35587)

Severity

Medium

Classification

CWE-441 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Tags

Acumonitor