CVE-2021-20018
published 2021-03-13CVE-2021-20018: A post-authenticated vulnerability in SonicWall SMA100 allows an attacker to export the configuration file to the specified email address. This vulnerability…
PriorityP424medium4.9CVSS 3.1
AVNACLPRHUINSUCNIHAN
EPSS
0.67%
47.5th percentile
A post-authenticated vulnerability in SonicWall SMA100 allows an attacker to export the configuration file to the specified email address. This vulnerability impacts SMA100 version 10.2.0.5 and earlier.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sonicwall | sma | — | — |
| sonicwall | sma100 | — | — |
| sonicwall | sma100_firmware | <= 10.2.0.5 | — |
CVSS provenance
nvdv3.14.9MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:P/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-h7wr-5x75-2c5h: A post-authenticated vulnerability in SonicWall SMA100 allows an attacker to export the configuration file to the specified email address
ghsa_unreviewed·2022-05-24
CVE-2021-20018 [MEDIUM] CWE-287 GHSA-h7wr-5x75-2c5h: A post-authenticated vulnerability in SonicWall SMA100 allows an attacker to export the configuration file to the specified email address
A post-authenticated vulnerability in SonicWall SMA100 allows an attacker to export the configuration file to the specified email address. This vulnerability impacts SMA100 version 10.2.0.5 and earlier.
SonicWall
CVE-2021-20018: A post-authenticated vulnerability in SonicWall SMA100 allows an attacker to export the configuration file to the specified email address. This vulner
vendor_sonicwall·2021-03-13·CVSS 4.9
CVE-2021-20018 [MEDIUM] CWE-200 CVE-2021-20018: A post-authenticated vulnerability in SonicWall SMA100 allows an attacker to export the configuration file to the specified email address. This vulner
CVE-2021-20018: A post-authenticated vulnerability in SonicWall SMA100 allows an attacker to export the configuration file to the specified email address. This vulnerability impacts SMA100 version 10.2.0.5 and earlier.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2021-03-13
Published