Published: 08/12/2021 Updated: 10/12/2021

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated malicious user to upload crafted web pages or files as a 'nobody' user. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sonicwall sma_200_firmware 10.2.0.8-37sv
sonicwall sma_200_firmware 10.2.1.1-19sv
sonicwall sma_210_firmware 10.2.0.8-37sv
sonicwall sma_210_firmware 10.2.1.1-19sv
sonicwall sma_410_firmware 10.2.0.8-37sv
sonicwall sma_410_firmware 10.2.1.1-19sv
sonicwall sma_400_firmware 10.2.0.8-37sv
sonicwall sma_400_firmware 10.2.1.1-19sv
sonicwall sma_500v_firmware 10.2.0.8-37sv
sonicwall sma_500v_firmware 10.2.1.1-19sv

Check Point Reference: CPAI-2021-2131 Date Published: 12 Mar 2024 Severity: High ...

CWE-22 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0026 https://nvd.nist.gov https://advisories.checkpoint.com/defense/advisories/public/2024/cpai-2021-2131.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-20040

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect