CyberSec.Space Logo
CVEブラウザに戻る

CVE-2021-20035

Known Exploited (CISA KEV)MEDIUM
6.5
CVSS Severity Score
EPSS Score96.6560%
EPSS Percentile89.22th
Published2021年9月27日
Last Modified2025年10月31日

Vulnerability Description

Improper neutralization of special elements in the SMA100 management interface allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user which potentially leads to DoS.

Affected Platforms (CPE)

💻
Sonicwall

Sma 200 Firmware

< 9.0.0.11-31sv
💻
Sonicwall

Sma 200 Firmware

>= 10.2.0.0 and < 10.2.0.8-37sv
💻
Sonicwall

Sma 200 Firmware

>= 10.2.1.0 and < 10.2.1.1-19sv
💻
Sonicwall

Sma 210 Firmware

< 9.0.0.11-31sv
💻
Sonicwall

Sma 210 Firmware

>= 10.2.0.0 and < 10.2.0.8-37sv
💻
Sonicwall

Sma 210 Firmware

>= 10.2.1.0 and < 10.2.1.1-19sv
💻
Sonicwall

Sma 400 Firmware

< 9.0.0.11-31sv
💻
Sonicwall

Sma 400 Firmware

>= 10.2.0.0 and < 10.2.0.8-37sv
💻
Sonicwall

Sma 400 Firmware

>= 10.2.1.0 and < 10.2.1.1-19sv
💻
Sonicwall

Sma 410 Firmware

< 9.0.0.11-31sv
💻
Sonicwall

Sma 410 Firmware

>= 10.2.0.0 and < 10.2.0.8-37sv
💻
Sonicwall

Sma 410 Firmware

>= 10.2.1.0 and < 10.2.1.1-19sv
📦
Sonicwall

Sma 500v

< 9.0.0.11-31sv
📦
Sonicwall

Sma 500v

>= 10.2.0.0 and < 10.2.0.8-37sv
📦
Sonicwall

Sma 500v

>= 10.2.1.0 and < 10.2.1.1-19sv

References & Advisories

🔗 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0022
🔗 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0022
🔗 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-20035

関連する脆弱性情報

CVE-2021-200389.8

A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server's mod_cgi module environment variables allows a remote u...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...