What the vulnerability does

01Description

A post-authenticated command injection vulnerability in SonicWall SMA100 allows an authenticated attacker to execute OS commands as a 'nobody' user. This vulnerability impacts SMA100 version 10.2.0.5 and earlier.

Key dates

02Disclosure timeline

March 13, 2021 CVE published
August 3, 2024 Record updated