CVE-2021-20040Relative Path Traversal in Sma100

CWE-23Relative Path TraversalCWE-22Path Traversal4 documents4 sources
Severity
7.5HIGHNVD
EPSS
8.8%
top 7.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Sonicwall Sma100Sonicwall SMA 200 FirmwareSonicwall SMA 210 Firmware+3 more
Timeline
PublishedDec 8
Latest updateJan 12

Description

A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated attacker to upload crafted web pages or files as a 'nobody' user. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages6 packages

CVEListV5sonicwall/sonicwall_sma10010.2.0.8-37sv and earlier, 10.2.1.1-19sv and earlier, 10.2.1.2-24sv and earlier+2
NVDsonicwall/sma_500v_firmware10.2.0.8-37sv, 10.2.1.1-19sv+1
NVDsonicwall/sma_200_firmware10.2.0.8-37sv, 10.2.1.1-19sv+1
NVDsonicwall/sma_210_firmware10.2.0.8-37sv, 10.2.1.1-19sv+1
NVDsonicwall/sma_400_firmware10.2.0.8-37sv, 10.2.1.1-19sv+1

🔴Vulnerability Details

2
GHSA
GHSA-f8vh-ph3q-qhmc: A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated attacker to upload crafted web pages or files as2021-12-09
CVEList
CVE-2021-20040: A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated attacker to upload crafted web pages or files as2021-12-08

🔍Detection Rules

1
Suricata
ET EXPLOIT SonicWall SMA 100 Series - Unauthenticated File Upload Path Traversal (CVE-2021-20040)2022-01-12
CVE-2021-20040 — Relative Path Traversal in Sma100 | cvebase