SonicWall SSLVPN SMA100 authenticated command injection vulnerability

A vulnerability in the SonicWall SMA100 appliance allows an authenticated management-user to perform OS command injection using HTTP POST parameters. This vulnerability affected SMA100 build version 10.2.0.2-20sv and earlier.
CVE: CVE-2020-5146
Last updated: Jan. 9, 2021, 12:18 a.m.

Original Article

Leave a Reply

Your email address will not be published. Required fields are marked *