Primary

Context

SonicWall Email Security Path Traversal Vulnerability

Vulnerability

Patched

A path traversal vulnerability exists in the SonicWall Email Security appliance, specifically in versions 10.0.33.8195 and earlier. This vulnerability allows attackers to manipulate file system paths by injecting crafted directory-traversal sequences, such as '../', potentially accessing files and directories outside the intended restricted path.

Impact

Exploitation of this vulnerability could lead to unauthorized access of files and directories outside the intended restrictions, allowing for potential information disclosure or manipulation.

Remediation

Users are advised to upgrade to SonicWall Email Security versions 10.0.34.8215, 10.0.34.8223 or higher. For guidance on upgrading, refer to the SonicWall Email Security upgrade documentation.

Added: Nov 20, 2025, 3:31 PM

Updated: Nov 20, 2025, 7:24 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

5.0

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

5.0

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SonicWall Email Security Path Traversal Vulnerability

Vulnerability

Impact

Remediation

Affected Products

SonicWall Email Security

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating