How often do we get to see a police officer being robbed by a thief? The chances of happening such scenarios are pretty slim but it’s always a possibility. Now in the digital world of the internet and smart devices, the thieves are generally hackers, trying to penetrate the system. But imagine a firm offering its services to keep your network security has a critical loophole in its system. We’ll there are some cases where this event has taken place. However, most recently dealt a huge financial and confidential impact on some fortune 500 companies. There’s a similar firm named SonicWall, which specializes in network security. Today we’re going to discuss the Critical Vulnerability Patch Issued by SonicWall.
Where Does The Vulnerability Focus?
This Vulnerability Focuses on the Secure Mobile Access (SMA) 100 series appliances offered by the company itself. If an attacker manages to exploit this vulnerability successfully, he/she can gain administrative control over targeted devices from remote locations.
Identified with CVE-2021-20034 this arbitrary file deletion vulnerability has been rated 9.1 out of 10 on a severity scale. So if by any chance this vulnerability could have been exploited it would deal lethal damage to the company itself.
Security researchers say there have been no signs of this vulnerability being actively exploited in the wild. So mostly chances are, no security breaches have taken place.
Who Found This Vulnerability?
Wenxu Yin of Alpha Lab, Qihoo 360, is the guy reporting this critical security flaw to SonicWall.
Below are the mentioned devices that have been affected by this Vulnerability.
100 Series — SMA 200, SMA 210, SMA 400, SMA 410, and SMA 500v — running the following versions:
- 220.127.116.11-28sv and earlier
- 10.2.0.7-34sv and earlier
- 10.2.1.0-17sv and earlier
Did SonicWall Issued Critical Vulnerability Patch?
The answer is yes, an emergency security patch has been issued. So if you use any of the above-mentioned devices please apply the patches as soon as possible.