Netextender Security Vulnerabilities and Issues — Netextender CVE List

Lucene search

SonicwallNetextender

3 matches found

CVE•added 2023/10/03 8:15 a.m.•59 views

CVE-2023-44218

A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation (LPE) vulnerability.

8.8CVSS7.8AI score0.00085EPSS

CVE•added 2023/10/27 8:15 a.m.•50 views

CVE-2023-44220

SonicWall NetExtender Windows (32-bit and 64-bit) client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Successful exploitation via a local attacker could result in command execution in the target system.

7.3CVSS7.1AI score0.00026EPSS

CVE•added 2023/10/03 8:15 a.m.•44 views

CVE-2023-44217

A local privilege escalation vulnerability in SonicWall Net Extender MSI client for Windows 10.2.336 and earlier versions allows a local low-privileged user to gain system privileges through running repair functionality.

7.8CVSS7.8AI score0.00062EPSS