Primary

Context

SonicWall SMA100 Command Injection Vulnerability Allowing File Upload

Vulnerability

A command injection vulnerability has been identified in SonicWall SMA100 appliances, specifically in the SSLVPN admin interface. This vulnerability allows remote authenticated attackers with admin privileges to inject shell command arguments, facilitating the upload of files to the appliance. The issue affects SMA100 series products, including the SMA 200, 210, 400, 410, and 500v, all running versions through 10.2.1.14-75sv.

Impact

Exploitation of this vulnerability could lead to unauthorized file uploads on the affected appliance.

Remediation

Users are advised to upgrade to SonicWall SMA100 series version 10.2.1.15-81sv or higher. After updating, verify that no unauthorized logins have occurred. As an additional security measure, enable multifactor authentication (MFA) and activate the Web Application Firewall (WAF) on SMA100.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.8

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.8

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SonicWall SMA100 Command Injection Vulnerability Allowing File Upload

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating