Description

Sonicwall SMA 100 allows an unauthenticated attacker to interact with hosts on the internal network which is otherwise not accessible externally.

Remediation

Upgrade to the latest version of Sonicwall

References

CVE-2021-20038..42: SonicWall SMA 100 Multiple Vulnerabilities

Related Vulnerabilities

Remote code execution of user-provided local names in Rails

RCE with Spring Data Commons

VMware vCenter Log4Shell RCE

Deserialization of Untrusted Data (Java JSON Deserialization) Jackson

Reverse proxy misrouting

Severity

Medium

Classification

CWE-441 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Tags

Acumonitor