SonicWall Email Security Multiple Zero-day Vulnerabilities
Release Date:
21 Apr 2021
4706
Views
RISK: Extremely High Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in SonicWall Email Security, a remote attacker could exploit some of these vulnerabilities to trigger sensitive information disclosure, data manupilation and elevation of privilege on the targeted system.
Notes:
- These vulnerabilities can allow the attacker to take full control over the targeted system.
- These vulnerabilities are reported to have been exploited in the wild.
Impact
- Elevation of Privilege
- Information Disclosure
- Data Manipulation
System / Technologies affected
- SonicWall On-premise Email Security (ES) 10.0.9 and earlier versions
- Hosted Email Security (HES) 10.0.9 and earlier versions
Solutions
Please visit the vendor web-site for more details.
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0007
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0008
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0010
- https://www.sonicwall.com/support/product-notification/security-notice-sonicwall-email-security-zero-day-vulnerabilities/210416112932360/
Vulnerability Identifier
Source
Related Link
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0007
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0008
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0010
- https://www.sonicwall.com/support/product-notification/security-notice-sonicwall-email-security-zero-day-vulnerabilities/210416112932360/
Share with