CVE-2021-20023

SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to read an arbitrary file on the...

Basic Information

CVE State: PUBLISHED
Reserved Date: December 17, 2020
Published Date: April 20, 2021
Last Updated: February 06, 2025
Vendor: SonicWall
Product: Email Security
Description: SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to read an arbitrary file on the remote host.

CVSS Scores

SSVC Information

Exploitation: active
Technical Impact: partial

Exploit Status

Exploited in the Wild: Yes (added 2021-11-03 00:00:00 UTC) Source
Used in Malware: Yes (added 2021-11-03 00:00:00 UTC) Source

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0010

Known Exploited Vulnerability Information

Source	Added Date
CISA	2021-11-03 00:00:00 UTC