A vulnerability in the Gen7 SonicOS Cloud platform NSv, allows a remote authenticated local low-privileged attacker to elevate privileges to root and potentially lead to code execution.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.