virus logo Intrusion Prevention

SonicWall.SMA100.CVE-2021-20016.SQL.Injection

description-logoDescription

This indicates an attack attempt to exploit an SQL Injection Vulnerability in SonicWall SMA100 series products.
This vulnerability is due to insufficient validation of the parameters in the HTTP requests when processing an crafted HTTP request. A remote attacker could exploit this vulnerability by sending a HTTP request with a malicious HTTP request to the target server. Successful exploitation could lead to arbitrary SQL code execution in the security context of database service.

affected-products-logoAffected Products

SonicWall SMA100 with firmware between version 10.0.0.0 to version 10.2.0.4

Impact logoImpact

System Compromise: Remote attackers can add, view, delete or modify data in the database of the affected application

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0001

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-01-23 22.481 Default_action:pass:drop
2023-01-05 22.470

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0001
ID 52191
Created Oct 04, 2022
Updated Jan 20, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2021-20016
Known Exploited Yes
Exploit Prediction Score 2.63%
Default Action drop
Active
Affected OS Linux
Affected App Other