7 matches found
SonicWall Secure Remote Access (SRA) SQLi (SNWLID-2021-0017)
The remote host is a SonicWall Secure Remote Access SRA device that is affected by an SQL injection vulnerability due to improper neutralization of an SQL command. An unauthenticated, remote attacker can exploit this to run SQL commands. Note that Nessus has not tested for this issue but has...
Wazawaka Goes Waka Waka
In January, KrebsOnSecurity examined clues left behind by "Wazawaka," the hacker handle chosen by a major ransomware criminal in the Russian-speaking cybercrime scene. Wazawaka has since "lost his mind" according to his erstwhile colleagues, creating a Twitter account to drop exploit code for a...
CVE-2021-20028
creationtimestamp| type| source ---|---|--- 2021-08-04 23:23:38+00:00| seen| https://t.me/cibsecurity/26843 2022-01-26 18:54:27+00:00| published-proof-of-concept| https://t.me/arvinclub/5154 2022-02-13 11:48:22+00:00| seen| https://t.me/breachdetector/45993 2023-06-14 21:10:04+00:00| seen|...
CVE-2021-20028
Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access SRA products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier...
CVE-2021-20028
Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access SRA products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier...
CVE-2021-20028
CVE-2021-20028 is an SQL injection in SonicWall Secure Remote Access (SRA) appliances and SRA/SMA endpoints due to improper neutralization of SQL commands. Affected products include end-of-life SRA appliances with 8.x firmware and 9.0.0.9-26sv or earlier. The vulnerability has a high/critical imp...
CVE-2021-20028
Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access SRA products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value:...