CVE-2021-20024

8.1HIGH

Key Information

Vendor: Sonicwall
Status: Sonicwall Switch
Vendor: CVE Published:; 9 July 2021

Summary

Multiple Out-of-Bound read vulnerability in SonicWall Switch when handling LLDP Protocol allows an attacker to cause a system instability or potentially read sensitive information from the memory locations.

Affected Version(s)

SonicWall Switch = 1.0.0.5-16 and earlier

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Jul 9, 2021
Vulnerability Reserved.
Dec 17, 2020

Collectors

NVD DatabaseMitre Database