An improper access control vulnerability in SMA100 allows a remote unauthenticated attacker to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to factory default settings.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/164564/SonicWall-SMA-10.2.1.0-17sv-Password-Reset.html | Exploit Third Party Advisory VDB Entry |
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0021 | Vendor Advisory |
http://packetstormsecurity.com/files/164564/SonicWall-SMA-10.2.1.0-17sv-Password-Reset.html | Exploit Third Party Advisory VDB Entry |
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0021 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
|
History
21 Nov 2024, 05:45
Type | Values Removed | Values Added |
---|---|---|
References | () http://packetstormsecurity.com/files/164564/SonicWall-SMA-10.2.1.0-17sv-Password-Reset.html - Exploit, Third Party Advisory, VDB Entry | |
References | () https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0021 - Vendor Advisory |
Information
Published : 2021-09-27 18:15
Updated : 2024-11-21 05:45
NVD link : CVE-2021-20034
Mitre link : CVE-2021-20034
CVE.ORG link : CVE-2021-20034
JSON object : View
Products Affected
sonicwall
- sma_210
- sma_410
- sma_500v
- sma_410_firmware
- sma_200
- sma_400
- sma_200_firmware
- sma_400_firmware
- sma_210_firmware