virus logo Intrusion Prevention

SonicWall.SMA100.CVE-2021-20016.SQL.Injection

description-logoDescription

This indicates an attack attempt to exploit an SQL Injection Vulnerability in SonicWall SMA100 series products.
This vulnerability is due to insufficient validation of the parameters in the HTTP requests when processing an crafted HTTP request. A remote attacker could exploit this vulnerability by sending a HTTP request with a malicious HTTP request to the target server. Successful exploitation could lead to arbitrary SQL code execution in the security context of database service.

affected-products-logoAffected Products

SonicWall SMA100 with firmware between version 10.0.0.0 to version 10.2.0.4

Impact logoImpact

System Compromise: Remote attackers can add, view, delete or modify data in the database of the affected application

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0001

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2023-01-23 22.481
Modified
 Default_action:pass:drop
2023-01-05 22.470
New

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0001
ID 52191
Created Oct 04, 2022
Updated Jan 20, 2023
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Known Exploited Yes
Exploit Prediction Score 78.0%
Default Action drop
Active
Affected OS Linux
Affected App Other
Profile Type SQL Injection