Description
A vulnerability in the SonicWall NSM On-Prem product allows an authenticated attacker to perform OS command injection using a crafted HTTP request. This vulnerability affects NSM On-Prem 2.2.0-R10 and earlier versions.
Affected Software
Related
{"id": "CVE-2021-20026", "vendorId": null, "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-20026", "description": "A vulnerability in the SonicWall NSM On-Prem product allows an authenticated attacker to perform OS command injection using a crafted HTTP request. This vulnerability affects NSM On-Prem 2.2.0-R10 and earlier versions.", "published": "2021-05-27T19:15:00", "modified": "2021-06-08T16:36:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "SINGLE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 9.0}, "severity": "HIGH", "exploitabilityScore": 8.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20026", "reporter": "PSIRT@sonicwall.com", "references": ["https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0014"], "cvelist": ["CVE-2021-20026"], "immutableFields": [], "lastseen": "2022-03-23T13:05:47", "viewCount": 45, "enchantments": {"dependencies": {"references": [{"type": "seebug", "idList": ["SSV:99277"]}], "rev": 4}, "score": {"value": 3.6, "vector": "NONE"}, "twitter": {"counter": 25, "tweets": [{"link": "https://twitter.com/SecurityNewsbot/status/1412558262365417472", "text": "SonicWall addresses critical CVE-2021-20026 /hashtag/flaw?src=hashtag_click in NSM devices https://t.co/dMe0mAAlVK?amp=1 /hashtag/SecurityAffairs?src=hashtag_click"}, {"link": "https://twitter.com/mortensl/status/1412620696950349828", "text": "SonicWall addresses critical CVE-2021-20026 flaw in NSM devices"}, {"link": "https://twitter.com/torsity_intel/status/1412819147772383242", "text": "CVE-2021-20026: Vulnerabilidad de inyecci\u00f3n de comandos que reside en Network Security Manager de SonicWall parcheado. Actualice ahora"}, {"link": "https://twitter.com/twelvesec/status/1412916355578449922", "text": "/hashtag/SonicWall?src=hashtag_click addresses critical CVE-2021-20026 flaw in its /hashtag/NSM?src=hashtag_click devices.\n/hashtag/CyberSecurity?src=hashtag_click, /hashtag/infosec?src=hashtag_click\nhttps://t.co/5oVnrDeM0P?amp=1"}, {"link": "https://twitter.com/IT_securitynews/status/1413167684464824328", "text": "SonicWall Patches Critical CVE-2021-20026 Vulnerability in NSM\u00a0Product"}, {"link": "https://twitter.com/EHackerNews/status/1413205637022896129", "text": "SonicWall Patches Critical CVE-2021-20026 Vulnerability in NSM Product https://t.co/Buk0WAOvsq?amp=1"}, {"link": "https://twitter.com/cimitsupport/status/1413291625023934466", "text": "SonicWall Patches Critical CVE-2021-20026 Vulnerability in NSM Product"}, {"link": "https://twitter.com/omvapt/status/1413286992423571458", "text": "/hashtag/SonicWall?src=hashtag_click addresses critical CVE-2021-20026 flaw in /hashtag/NSM?src=hashtag_click devices"}, {"link": "https://twitter.com/KingNormies/status/1413331240661438468", "text": "https://t.co/qtvCgbYo82?amp=1\nSonicWall Patches Critical CVE-2021-20026 Vulnerability in NSM Product\nhttps://t.co/8JpUem4Tco?amp=1\u00a0A researcher at Positive Technologies has provided details about the CVE-2021-20026 command injection flaw that exploits SonicWall\u2019s Network Security Man..."}, {"link": "https://twitter.com/RedPacketSec/status/1413393277903065089", "text": "SonicWall Patches Critical CVE-2021-20026 Vulnerability in NSM Product - https://t.co/rxzLHtWmF7?amp=1\n/hashtag/OSINT?src=hashtag_click /hashtag/Security?src=hashtag_click /hashtag/Threatintel?src=hashtag_click /hashtag/cybersecurity?src=hashtag_click"}], "modified": "2021-06-09T07:39:33"}, "backreferences": {"references": [{"type": "seebug", "idList": ["SSV:99277"]}]}, "exploitation": null, "vulnersScore": 3.6}, "_state": {"dependencies": 0}, "_internal": {}, "cna_cvss": {"cna": null, "cvss": {}}, "cpe": ["cpe:/a:sonicwall:network_security_manager:2.2.0"], "cpe23": ["cpe:2.3:a:sonicwall:network_security_manager:2.2.0:r10:*:*:on-premises:*:*:*", "cpe:2.3:a:sonicwall:network_security_manager:2.2.0:-:*:*:on-premises:*:*:*"], "cwe": ["CWE-78"], "affectedSoftware": [{"cpeName": "sonicwall:network_security_manager", "version": "2.2.0", "operator": "lt", "name": "sonicwall network security manager"}, {"cpeName": "sonicwall:network_security_manager", "version": "2.2.0", "operator": "eq", "name": "sonicwall network security manager"}, {"cpeName": "sonicwall:network_security_manager", "version": "2.2.0", "operator": "eq", "name": "sonicwall network security manager"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:sonicwall:network_security_manager:2.2.0:*:*:*:on-premises:*:*:*", "versionEndExcluding": "2.2.0", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:sonicwall:network_security_manager:2.2.0:-:*:*:on-premises:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:sonicwall:network_security_manager:2.2.0:r10:*:*:on-premises:*:*:*", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0014", "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0014", "refsource": "CONFIRM", "tags": ["Vendor Advisory"]}]}
{"seebug": [{"lastseen": "2021-07-24T09:54:08", "description": "", "published": "2021-06-17T00:00:00", "type": "seebug", "title": "SonicWall NSM On-Prem\u547d\u4ee4\u6267\u884c\u6f0f\u6d1e\uff08CVE-2021-20026\uff09", "bulletinFamily": "exploit", "cvelist": ["CVE-2021-20026"], "modified": "2021-06-17T00:00:00", "id": "SSV:99277", "href": "https://www.seebug.org/vuldb/ssvid-99277", "sourceData": "", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "sourceHref": ""}]}
CVE-2021-20026
