CVE-2021-20037 is a vulnerability in SonicWall Global Vpn Client
Published on September 21, 2021
SonicWall Global VPN Client 4.10.5 installer (32-bit and 64-bit) incorrect default file permission vulnerability leads to privilege escalation which potentially allows command execution in the host operating system. This vulnerability impacts GVC 4.10.5 installer and earlier.
Weakness Type
Incorrect Default Permissions
During installation, installed file permissions are set to allow anyone to modify those files.
Products Associated with CVE-2021-20037
Want to know whenever a new CVE is published for SonicWall Global Vpn Client? stack.watch will email you.
Affected Versions
SonicWall Global VPN Client Version Global VPN Client 4.10.5 and earlier is affected by CVE-2021-20037Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.