Path Traversal Vulnerability Could Lead to File Deletion
CVE-2024-22398

Currently unrated

Key Information:

Vendor: Sonicwall
Status: Email Security
Vendor: CVE Published:; 14 March 2024

Summary

An improper Limitation of a Pathname to a Restricted Directory (Path Traversal) vulnerability in SonicWall Email Security Appliance could allow a remote attacker with administrative privileges to conduct a directory traversal attack and delete arbitrary files from the appliance file system.

Affected Version(s)

Email Security Linux 10.0.26.7807 and earlier versions

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-202...

vendor-advisory

Timeline

Vulnerability published
Mar 14, 2024
Vulnerability Reserved
Jan 10, 2024