Sensitive Data Disclosure Vulnerability in SonicOS by SonicWall
CVE-2021-20019

7.5HIGH

Key Information:

Vendor: Sonicwall
Status: Sonicos
Vendor: CVE Published:; 23 June 2021

What is CVE-2021-20019?

A vulnerability exists in SonicWall's SonicOS, where an improperly handled HTTP server response can lead to the unintentional exposure of partial memory contents. By sending a specially crafted HTTP request, an attacker may exploit this weakness to gain access to sensitive information that should remain confidential. Organizations utilizing affected versions of SonicOS are advised to implement immediate patches and review their security protocols.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

SonicOS SonicOS - 6.5.4.7-83n

SonicOS SonicOSv - 6.5.4.4-44v-21-955

SonicOS SonicOS - 6.5.1.12-3n

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-202...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 23, 2021
Vulnerability Reserved
Dec 17, 2020

JSON

Sonicwall

What is CVE-2021-20019?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.