CVE-2021-20019 vulnerability in SonicWall Products
Published on June 23, 2021
A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability.
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2021-20019 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2021-20019
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-20019 are published in these products:
Affected Versions
SonicWall SonicOS:- Version SonicOS - 6.5.4.7-83n is affected.
- Version SonicOSv - 6.5.4.4-44v-21-955 is affected.
- Version SonicOS - 6.5.1.12-3n is affected.
- Version SonicOS - 6.0.5.3-94o is affected.
- Version SonicOS - 7.0.0-R713 and earlier is affected.
- Version SonicOS - 7.0.1-R1036 and earlier is affected.
- Version SonicOS - 7.0.0.375 and earlier is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.