What is the vulnerability ID for this SonicWall Global VPN Client vulnerability?

The vulnerability ID for this SonicWall Global VPN Client vulnerability is CVE-2021-20037.

What is the impact of this SonicWall Global VPN Client vulnerability?

This SonicWall Global VPN Client vulnerability can lead to privilege escalation and potentially allow command execution in the host operating system.

Which version of SonicWall Global VPN Client is affected by this vulnerability?

SonicWall Global VPN Client version 4.10.5 and earlier is affected by this vulnerability.

How severe is this SonicWall Global VPN Client vulnerability?

This SonicWall Global VPN Client vulnerability has a severity rating of 7.8 (high).

How can I fix this SonicWall Global VPN Client vulnerability?

To fix this SonicWall Global VPN Client vulnerability, update to a version beyond 4.10.5 or apply any patches or fixes provided by SonicWall.

Vulnerability/
CVE-2021-20037

high

7.8

CWE

276

21/9/2021

3/8/2024

CVE-2021-20037

Q: What is the title of this SonicWall Global VPN Client vulnerability?

The title of this SonicWall Global VPN Client vulnerability is 'SonicWall Global VPN Client 4.10.5 installer (32-bit and 64-bit) incorrect default file permission vulnerability'.

First published: Tue Sep 21 2021(Updated: )

SonicWall Global VPN Client 4.10.5 installer (32-bit and 64-bit) incorrect default file permission vulnerability leads to privilege escalation which potentially allows command execution in the host operating system. This vulnerability impacts GVC 4.10.5 installer and earlier.

Credit: PSIRT@sonicwall.com

Affected Software	Affected Version	How to fix
SonicWALL GLobal VPN Client	<=4.10.5

Never miss a vulnerability like this again

Reference Links

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0024

Frequently Asked Questions

What is the vulnerability ID for this SonicWall Global VPN Client vulnerability?
The vulnerability ID for this SonicWall Global VPN Client vulnerability is CVE-2021-20037.
What is the title of this SonicWall Global VPN Client vulnerability?
The title of this SonicWall Global VPN Client vulnerability is 'SonicWall Global VPN Client 4.10.5 installer (32-bit and 64-bit) incorrect default file permission vulnerability'.
What is the impact of this SonicWall Global VPN Client vulnerability?
This SonicWall Global VPN Client vulnerability can lead to privilege escalation and potentially allow command execution in the host operating system.
Which version of SonicWall Global VPN Client is affected by this vulnerability?
SonicWall Global VPN Client version 4.10.5 and earlier is affected by this vulnerability.
How severe is this SonicWall Global VPN Client vulnerability?
This SonicWall Global VPN Client vulnerability has a severity rating of 7.8 (high).
How can I fix this SonicWall Global VPN Client vulnerability?
To fix this SonicWall Global VPN Client vulnerability, update to a version beyond 4.10.5 or apply any patches or fixes provided by SonicWall.

collector/nvd-index
agent/weakness
agent/severity
agent/author
agent/tags
agent/type
agent/event
agent/references
agent/description
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
vendor/sonicwall
canonical/sonicwall global vpn client
version/sonicwall global vpn client/4.10.5

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.