CVE-2021-20037

2021-09-2108:50:11

CWE-276

sonicwall

www.cve.org

0.0004 Low

EPSS

Percentile

12.6%

JSON

SonicWall Global VPN Client 4.10.5 installer (32-bit and 64-bit) incorrect default file permission vulnerability leads to privilege escalation which potentially allows command execution in the host operating system. This vulnerability impacts GVC 4.10.5 installer and earlier.

CNA Affected

[
  {
    "product": "SonicWall Global VPN Client",
    "vendor": "SonicWall",
    "versions": [
      {
        "status": "affected",
        "version": "Global VPN Client 4.10.5 and earlier"
      }
    ]
  }
]

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0024

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for CVELIST:CVE-2021-20037