Unquoted Service Path Vulnerability in SonicWall NetExtender Windows Client

Unquoted Service Path Vulnerability in SonicWall NetExtender Windows Client

CVE-2020-5147 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

SonicWall NetExtender Windows client vulnerable to unquoted service path vulnerability, this allows a local attacker to gain elevated privileges in the host operating system. This vulnerability impact SonicWall NetExtender Windows client version 10.2.300 and earlier.

Learn more about our Web Application Penetration Testing UK.