Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
attackerkbAttackerKBAKB:1AE51720-4534-42A8-879C-01FFE347E837
HistoryJan 11, 2022 - 12:00 a.m.

CVE-2021-20038

2022-01-1100:00:00
attackerkb.com
80
vulnerability
sma100
apache httpd server
remote unauthenticated attacker
buffer overflow
mod_cgi module
code execution
nobody user
sma 200
sma 210
sma 400
sma 410
sma 500v
firmware
rapid7 analysis

CVSS2

9

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

0.951

Percentile

99.4%

JSON

A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server’s mod_cgi module environment variables allows a remote unauthenticated attacker to potentially execute code as a ‘nobody’ user in the appliance. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances firmware 10.2.0.8-37sv, 10.2.1.1-19sv, 10.2.1.2-24sv and earlier versions.

Recent assessments:

jbaines-r7 at January 11, 2022 2:19pm UTC reported:

This unauthenticated and remote stack-based buffer overflow allows an attacker to execute code on the remote SMA 100 series target. Exploitation can be a challenge though. For additional details, see the Rapid7 analysis.

ccondon-r7 at August 07, 2024 12:59pm UTC reported:

This unauthenticated and remote stack-based buffer overflow allows an attacker to execute code on the remote SMA 100 series target. Exploitation can be a challenge though. For additional details, see the Rapid7 analysis.

Assessed Attacker Value: 5
Assessed Attacker Value: 5Assessed Attacker Value: 2

Related

packetstorm 1
zdt 1
githubexploit 6
metasploit 1
rapid7blog 4
cvelist 2
checkpoint_advisories 2
cve 2
prion 2
threatpost 2
nvd 2
nuclei 1
cisa_kev 1
thn 2
nessus 1
ics 4
cisa 1
packetstorm
packetstorm
SonicWall SMA 100 Series Authenticated Command Injection
2022-01-13 00:00:00
zdt
zdt
SonicWall SMA 100 Series Authenticated Command Injection Exploit
2022-01-13 00:00:00
githubexploit
githubexploit
Exploit for Stack-based Buffer Overflow in Sonicwall Sma 200 Firmware
2022-01-11 02:25:25
Exploit for Out-of-bounds Write in Sonicwall Sma 200 Firmware
2022-04-24 02:02:54
Exploit for Stack-based Buffer Overflow in Sonicwall Sma 200 Firmware
2022-08-08 03:38:06
metasploit
metasploit
SonicWall SMA 100 Series Authenticated Command Injection
2022-01-10 20:43:50
rapid7blog
rapid7blog
CVE-2021-20038..42: SonicWall SMA 100 Multiple Vulnerabilities (FIXED)
2022-01-11 14:00:00
Metasploit Weekly Wrap-Up
2022-01-14 19:00:29
Patch Now: SonicWall Fixes Multiple Vulnerabilities in SMA 100 Devices
2021-12-08 18:57:52
cvelist
cvelist
CVE-2021-20039
2021-12-08 09:55:21
CVE-2021-20038
2021-12-08 09:55:20
checkpoint_advisories
checkpoint_advisories
SonicWall SMA 100 Command Injection (CVE-2021-20039)
2022-06-09 00:00:00
SonicWall SMA100 Buffer Overflow (CVE-2021-20038)
2022-02-06 00:00:00
cve
cve
CVE-2021-20039
2021-12-08 10:15:07
CVE-2021-20038
2021-12-08 10:15:07
prion
prion
Design/Logic Flaw
2021-12-08 10:15:00
Stack overflow
2021-12-08 10:15:00
threatpost
threatpost
Critical SonicWall NAC Vulnerability Stems from Apache Mods
2022-01-11 14:09:21
Critical SonicWall VPN Bugs Allow Complete Appliance Takeover
2021-12-08 19:16:54
nvd
nvd
CVE-2021-20039
2021-12-08 10:15:07
CVE-2021-20038
2021-12-08 10:15:07
nuclei
nuclei
SonicWall SMA100 Stack - Buffer Overflow/Remote Code Execution
2022-01-18 05:20:14
cisa_kev
cisa_kev
SonicWall SMA 100 Appliances Stack-Based Buffer Overflow Vulnerability
2022-01-28 00:00:00
thn
thn
SonicWall Urges Customers to Immediately Patch Critical SMA 100 Flaws
2021-12-09 05:18:00
North Korean Hackers Targeting Healthcare with Ransomware to Fund its Operations
2023-02-10 11:52:00
nessus
nessus
SonicWall Secure Mobile Access Multiple Vulnerabilities (SNWLID-2021-0026)
2021-12-09 00:00:00
ics
ics
#StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities
2023-02-09 12:00:00
2021 Top Routinely Exploited Vulnerabilities
2022-04-28 12:00:00
North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs
2024-07-25 12:00:00
cisa
cisa
CISA Adds Eight Known Exploited Vulnerabilities to Catalog
2022-01-28 00:00:00

CVSS2

9

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

0.951

Percentile

99.4%

JSON
Related for AKB:1AE51720-4534-42A8-879C-01FFE347E837
packetstorm1zdt1githubexploit6metasploit1rapid7blog4cvelist2checkpoint_advisories2cve2prion2threatpost2nvd2nuclei1cisa_kev1thn2nessus1ics4cisa1