CVE-2021-20024

8.1HIGH

Key Information:

Vendor: Sonicwall
Status: Sonicwall Switch
Vendor: CVE Published:; 9 July 2021

Summary

Multiple Out-of-Bound read vulnerability in SonicWall Switch when handling LLDP Protocol allows an attacker to cause a system instability or potentially read sensitive information from the memory locations.

Affected Version(s)

SonicWall Switch 1.0.0.5-16 and earlier

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-202...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 9, 2021
Vulnerability Reserved
Dec 17, 2020

Collectors

NVD DatabaseMitre Database