SQL Injection Vulnerability in SonicWall Secure Remote Access Products
CVE-2021-20028

9.8CRITICAL

Key Information:

Vendor: Sonicwall
Status: Sonicwall Sra/sma100
Vendor: CVE Published:; 4 August 2021

Badges

💰 Ransomware👾 Exploit Exists🟣 EPSS 86%🦅 CISA Reported

What is CVE-2021-20028?

The vulnerability arises from improper neutralization of SQL commands, leading to a SQL Injection risk affecting end-of-life Secure Remote Access (SRA) appliances. Specifically, this issue impacts SRA devices running all versions of firmware in the 8.x series as well as those on version 9.0.0.9-26sv or earlier. Exploitation of this vulnerability can allow unauthorized access to databases, potentially exposing sensitive information.

CISA has reported CVE-2021-20028

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2021-20028 as being exploited and is known by the CISA as enabling ransomware campaigns.

The CISA's recommendation is: The impacted product is end-of-life and should be disconnected if still in use.

Affected Version(s)

SonicWall SRA/SMA100 8.x firmware

SonicWall SRA/SMA100 9.0.0.9-26sv and earlier.

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-202...

x_refsource_CONFIRM

EPSS Score

86% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

💰
Used in Ransomware
Mar 28, 2022
👾
Exploit known to exist
Mar 28, 2022
🦅
CISA Reported
Mar 28, 2022
Vulnerability published
Aug 4, 2021
Vulnerability Reserved
Dec 17, 2020

Sonicwall

Badges

What is CVE-2021-20028?

CISA has reported CVE-2021-20028

Affected Version(s)

References

EPSS Score

CVSS V3.1

Timeline