Return to CVE list

CVE-2021-20034

9.1
Critical

CVE-2021-20034

PSIRT@sonicwall.com
Modified
View on MITREFind on GitHub

Description

An improper access control vulnerability in SMA100 allows a remote unauthenticated attacker to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to factory default settings.

Exploits

504302021-10-20webappsHardware

SonicWall SMA 10.2.1.0-17sv - Password Reset

By Jacob Baines

References

PSIRT@sonicwall.com
http://packetstormsecurity.com/files/164564/SonicWall-SMA-10.2.1.0-17sv-Password-Reset.html
PSIRT@sonicwall.com
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0021
af854a3a-2127-422b-91ae-364da2661108
http://packetstormsecurity.com/files/164564/SonicWall-SMA-10.2.1.0-17sv-Password-Reset.html
af854a3a-2127-422b-91ae-364da2661108
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0021