Primary

Context

SonicWall NetExtender Windows Local Privilege Escalation Vulnerability Allowing Arbitrary File Deletion

Vulnerability

Patched

A local privilege escalation vulnerability has been identified in the SonicWall NetExtender Windows client, both 32-bit and 64-bit versions, prior to 10.3.1. This vulnerability allows an attacker to escalate privileges locally and trigger the deletion of arbitrary files.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion of files, potentially causing data loss or disruption of services that rely on the deleted files.

Remediation

Users are advised to upgrade to SonicWall NetExtender Windows version 10.3.2 or higher to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SonicWall NetExtender Windows Local Privilege Escalation Vulnerability Allowing Arbitrary File Deletion

Vulnerability

Impact

Remediation

Affected Products

SonicWall NetExtender

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating