Summary: CISA has warned federal agencies to secure SonicWall Secure Mobile Access (SMA) 100 series appliances due to a high-severity remote code execution vulnerability (CVE-2021-20035) that is being actively exploited. The vulnerability affects several SMA devices, allowing remote attackers with low privileges to execute arbitrary code. SonicWall has updated its advisory to reflect the increased risks associated with this vulnerability, which necessitates immediate action from network defenders.
Affected: SonicWall Secure Mobile Access (SMA) 100 series appliances
Keypoints :
- Vulnerability CVE-2021-20035 allows remote code execution in SMA 200, SMA 210, SMA 400, SMA 410, and SMA 500v devices.
- Previously categorized as a denial-of-service vulnerability, it has now been updated to signify active exploitation.
- Federal agencies have until May 7th to secure their networks against this vulnerability, as per the Binding Operational Directive 22-01.