CVE-2021-20030

7.5HIGH

Key Information

Vendor: Sonicwall
Status: Sonicwall Gms
Vendor: CVE Published:; 13 October 2022

Summary

SonicWall GMS is vulnerable to file path manipulation resulting that an unauthenticated attacker can gain access to web directory containing application's binaries and configuration files.

Affected Version(s)

SonicWall GMS = prior GMS 9.3.2

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Oct 13, 2022
Vulnerability Reserved.
Dec 17, 2020

Collectors

NVD DatabaseMitre Database