Primary

Context

SonicWall NetExtender Improper Link Resolution Before File Access Vulnerability

Vulnerability

Patched

A vulnerability allowing improper link resolution before file access has been identified in the SonicWall NetExtender Windows client, both 32-bit and 64-bit versions. This vulnerability allows an attacker to manipulate file paths, potentially leading to unauthorized file access or modification.

Impact

Exploitation of this vulnerability could allow an attacker to manipulate file paths, potentially leading to unauthorized access to files or modification of file contents.

Remediation

Users are advised to upgrade to SonicWall NetExtender Windows client version 10.3.2 or higher. Instructions for downloading the latest version can be found on the SonicWall website.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SonicWall NetExtender Improper Link Resolution Before File Access Vulnerability

Vulnerability

Impact

Remediation

Affected Products

SonicWall NetExtender

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating