VYPR
Unrated severityCISA KEVNVD Advisory· Published Sep 27, 2021· Updated Oct 21, 2025

CVE-2021-20035

CVE-2021-20035

Description

Improper neutralization of special elements in the SMA100 management interface allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user which potentially leads to DoS.

Affected products

2
  • SonicWall/SMA100llm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 9.0.0.10-28sv and earlier

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.