cbcvebase.
CVE-2021-20016
published 2021-02-04

CVE-2021-20016: A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password…

PriorityP194critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
KEVITWRansomware
CISA Known Exploited Vulnerabilitydue 2021-11-17
Exploited in the wild
EPSS
40.04%
98.4th percentile
A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. This vulnerability impacts SMA100 build version 10.x.

Affected

3 ranges
VendorProductVersion rangeFixed in
sonicwallsma
sonicwallsma_100_firmware>= 10.0.0.0 < 10.2.0.5-d-29sv10.2.0.5-d-29sv
sonicwallsonicwall_sma100

Detection & IOCsextracted from sources · hover to see the quote

  • CVE-2021-20016 is a critical SQL injection vulnerability in SonicWall SMA 100 series (SSLVPN) that allows unauthenticated remote attackers to access usernames, passwords, and session information via SQL query — target SMA100 build version 10.x
  • CVE-2021-20016 exploitation grants attackers access to login credentials and session information on SonicWall SMA 100 devices — monitor for anomalous authentication activity or unexpected session tokens on SMA 100 appliances
  • ·Vulnerability only affects SonicWall SMA 100 series devices running firmware version 10.x; older SRA VPN devices in production environments were not confirmed affected

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vulncheck9.8CRITICAL
cisa9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.