Sonicwall: >> Sma 500v Firmware Security Vulnerabilities
A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated attacker to upload crafted web pages or files as a 'nobody' user. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances.
CVSS Score
7.5
EPSS Score
0.063
Published
2021-12-08
CVE-2021-20028
Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier
Known exploited
CVSS Score
9.8
EPSS Score
0.857
Published
2021-08-04
Page 4