CVE-2021-20034

CVE-2021-20034

Vendor Sonicwall

Product SMA100

Weakness CWE-284

Published September 27, 2021

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

An improper access control vulnerability in SMA100 allows a remote unauthenticated attacker to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to factory default settings.

Key dates

02Disclosure timeline

September 27, 2021 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-20034

Related vulnerabilities

Identifiers

CVE CVE-2021-20034

CWE CWE-284

Affected versions

Vendor Sonicwall

Product SMA100

Affected 9.0.0.10-28sv and earlier

Vendor Sonicwall

Product SMA100

Affected 10.2.0.7-34sv and earlier

Vendor Sonicwall

Product SMA100

Affected 10.2.1.0-17sv and earlier

01Description

02Disclosure timeline

03References

04Related CVE