Arbitrary Code Execution Vulnerability in SonicWall SMA100 (CVE-2021-20016)

Arbitrary Code Execution Vulnerability in SonicWall SMA100 (CVE-2021-20016)

CVE-2019-7486 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Code injection in SonicWall SMA100 allows an authenticated user to execute arbitrary code in viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.4 and earlier.

Learn more about our User Device Pen Test.