CVE-2021-20035

⚠ KEVEPSS 12.8%

SonicWall SMA100 Appliances OS Command Injection Vulnerability

Added to CISA KEV: 4/16/2025

Description

SonicWall SMA100 appliances contain an OS command injection vulnerability in the management interface that allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user, which could potentially lead to code execution.

Affected packages (0)

No package mapping in OSV.