SonicWall’s SMA Series: The Vulnerability That Just Won’t Quit!
CISA warns federal agencies to patch their SonicWall Secure Mobile Access 100 series appliances. This vulnerability, CVE-2021-20035, is now being exploited in the wild. Originally patched in 2021, it allows remote code execution. Agencies have until May 7th to secure their networks. Prioritize patching to avoid cyber shenanigans!
Hot Take:
Who knew that the “Nobody” user had such a flair for drama? SonicWall’s SMA 100 series appliances are now the hottest ticket in town, but not in the way you’d want. It’s like finding out your toaster can double as a flamethrower. Time to patch up, or your network might end up in a cyber barbecue!
Key Points:
- Federal agencies are urged to secure SonicWall SMA 100 series devices against a critical remote code execution vulnerability.
- This security flaw, tracked as CVE-2021-20035, affects several SMA models and could allow low-privileged attackers to execute arbitrary code.
- SonicWall initially patched this vulnerability in 2021 but has since updated its advisory to reflect its exploitation in the wild.
- CISA added this vulnerability to its Known Exploited Vulnerabilities catalog, setting a three-week deadline for federal agencies to patch it.
- SonicWall has previously warned about various vulnerabilities in its firewall and secure access products, emphasizing the need for prompt patching.
Already a member? Log in here