Summary: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security flaw in SonicWall Secure Mobile Access (SMA) 100 Series gateways to its Known Exploited Vulnerabilities (KEV) catalog due to active exploitation. This high-severity vulnerability could allow remote authenticated attackers to execute arbitrary commands, leading to potential code execution. Federal agencies must implement mitigations by May 7, 2025, to safeguard their systems.
Affected: SonicWall Secure Mobile Access (SMA) 100 Series, including SMA 200, SMA 210, SMA 400, SMA 410, and SMA 500v devices
Keypoints :
- Vulnerability tracked as CVE-2021-20035 with a CVSS score of 7.2.
- Exploitation allows command injection via the SMA100 management interface.
- Fixed versions include 10.2.1.1-19sv, 10.2.0.8-37sv, and 9.0.0.11-31sv.
- Federal Civilian Executive Branch agencies must apply mitigations by May 7, 2025.
Source: https://thehackernews.com/2025/04/cisa-flags-actively-exploited.html