CVE-2021-20042 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2021-20042

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

An unauthenticated remote attacker can use SMA 100 as an unintended proxy or intermediary undetectable proxy to bypass firewall rules. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances.

Affected Software

Name	Vendor	Start Version	End Version
Sma_200_firmware	Sonicwall	9.0.0.11-31sv (including)	9.0.0.11-31sv (including)
Sma_200_firmware	Sonicwall	10.2.0.8-37sv (including)	10.2.0.8-37sv (including)
Sma_200_firmware	Sonicwall	10.2.1.1-19sv (including)	10.2.1.1-19sv (including)

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0026