Description

Sonicwall SMA 100 allows an unauthenticated attacker to interact with hosts on the internal network which is otherwise not accessible externally.

Remediation

Upgrade to the latest version of Sonicwall

References

CVE-2021-20038..42: SonicWall SMA 100 Multiple Vulnerabilities

Related Vulnerabilities

Deserialization of Untrusted Data (Java JSON Deserialization) Jackson

Remote file inclusion XSS

Flex BlazeDS AMF Deserialization RCE

Deserialization of Untrusted Data (.NET BinaryFormatter Object Deserialization)

ManageEngine Desktop Central Deserialization RCE (CVE-2020-10189)

Severity

Medium

Classification

CWE-441 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Tags

Acumonitor