CVE-2021-20019 vulnerability in SonicWall Products
Published on June 23, 2021
A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability.
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2021-20019 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2021-20019
stack.watch emails you whenever new vulnerabilities are published in SonicWall Sonicos or SonicWall Sonicosv. Just hit a watch button to start following.
Affected Versions
SonicWall SonicOS:- Version SonicOS - 6.5.4.7-83n is affected.
- Version SonicOSv - 6.5.4.4-44v-21-955 is affected.
- Version SonicOS - 6.5.1.12-3n is affected.
- Version SonicOS - 6.0.5.3-94o is affected.
- Version SonicOS - 7.0.0-R713 and earlier is affected.
- Version SonicOS - 7.0.1-R1036 and earlier is affected.
- Version SonicOS - 7.0.0.375 and earlier is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.