Primary

Context

SonicWall NetExtender Improper Privilege Management Vulnerability

Vulnerability

Patched

A vulnerability allowing improper privilege management has been identified in the SonicWall NetExtender Windows client, both 32-bit and 64-bit versions. This vulnerability enables a low-privileged attacker to alter configurations within the application. The issue arises from inadequate management of user privileges, allowing unauthorized modifications to be made.

Impact

Exploitation of this vulnerability could lead to unauthorized configuration changes within the SonicWall NetExtender application, potentially allowing for further exploitation or misuse of the application.

Remediation

Users are advised to upgrade to SonicWall NetExtender Windows client version 10.3.2 or higher to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SonicWall NetExtender Improper Privilege Management Vulnerability

Vulnerability

Impact

Remediation

Affected Products

SonicWall NetExtender

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating