Lucene search
+L

7 matches found

Tenable Nessus
Tenable Nessus
added 2022/04/04 12:0 a.m.41 views

SonicWall Secure Remote Access (SRA) SQLi (SNWLID-2021-0017)

The remote host is a SonicWall Secure Remote Access SRA device that is affected by an SQL injection vulnerability due to improper neutralization of an SQL command. An unauthenticated, remote attacker can exploit this to run SQL commands. Note that Nessus has not tested for this issue but has...

9.8CVSS7.5AI score0.30084EPSS
Exploits0References2
Krebs on Security
Krebs on Security
added 2022/02/14 6:22 p.m.116 views

Wazawaka Goes Waka Waka

In January, KrebsOnSecurity examined clues left behind by "Wazawaka," the hacker handle chosen by a major ransomware criminal in the Russian-speaking cybercrime scene. Wazawaka has since "lost his mind" according to his erstwhile colleagues, creating a Twitter account to drop exploit code for a...

7.5CVSS9.6AI score0.30084EPSS
Exploits0
Circl
Circl
added 2021/08/04 11:23 p.m.21 views

CVE-2021-20028

creationtimestamp| type| source ---|---|--- 2021-08-04 23:23:38+00:00| seen| https://t.me/cibsecurity/26843 2022-01-26 18:54:27+00:00| published-proof-of-concept| https://t.me/arvinclub/5154 2022-02-13 11:48:22+00:00| seen| https://t.me/breachdetector/45993 2023-06-14 21:10:04+00:00| seen|...

9.8CVSS7AI score0.30084EPSS
In wildExploits0References9
NVD
NVD
added 2021/08/04 7:15 p.m.32 views

CVE-2021-20028

Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access SRA products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier...

9.8CVSS0.30084EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2021/08/04 7:10 p.m.15 views

CVE-2021-20028

Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access SRA products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier...

8AI score0.30084EPSS
Exploits0References1
CVE
CVE
added 2021/08/04 7:10 p.m.1043 views

CVE-2021-20028

CVE-2021-20028 is an SQL injection in SonicWall Secure Remote Access (SRA) appliances and SRA/SMA endpoints due to improper neutralization of SQL commands. Affected products include end-of-life SRA appliances with 8.x firmware and 9.0.0.9-26sv or earlier. The vulnerability has a high/critical imp...

9.8CVSS9.8AI score0.30084EPSS
In wildExploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/08/04 12:0 a.m.21 views

CVE-2021-20028

Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access SRA products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value:...

9.8CVSS9.9AI score0.30084EPSS
In wildExploits0References2
Rows per page
Query Builder