Cybersecurity Alerts

← Back to Cybersecurity Alerts

CVE-2021-20028

SonicWall | Secure Remote Access (SRA)Added 2022-03-28Remediation Deadline 2022-04-18Active Ransomware Campaign

SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability

SonicWall Secure Remote Access (SRA) products contain an improper neutralization of a SQL Command leading to SQL injection.

Required Action

The impacted product is end-of-life and should be disconnected if still in use.

Weakness Classification

CWE-89

References

https://nvd.nist.gov/vuln/detail/CVE-2021-20028