CISA Adds Actively Exploited SonicWall SMA 100 Series Vulnerability to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) of the United States added a security flaw affecting SonicWall Secure Mobile Access (SMA) 100 Series gateways to its catalog of known exploited vulnerabilities (KEV) on Wednesday, due to evidence of active exploitation. The high-severity vulnerability, listed under the number CVE-2021-20035 (CVSS score: 7.2), involves a case of operating system command injection.