Improper neutralization of special elements in the SMA100 management interface '/cgi-bin/viewcert' POST http method allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: sonicwall

Published: 2021-12-08T09:55:21

Updated: 2024-08-03T17:30:07.406Z

Reserved: 2020-12-17T00:00:00

Link: CVE-2021-20039

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-12-08T10:15:07.903

Modified: 2024-11-21T05:45:50.030

Link: CVE-2021-20039

cve-icon Redhat

No data.