Vulnerability Details : CVE-2021-20028
Used for ransomware!
Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier
Vulnerability category: Sql Injection
CVE-2021-20028 is in the CISA Known Exploited Vulnerabilities Catalog
This issue is known to have been leveraged as part of a ransomware campaign.
CISA vulnerability name:
SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability
CISA required action:
The impacted product is end-of-life and should be disconnected if still in use.
CISA description:
SonicWall Secure Remote Access (SRA) products contain an improper neutralization of a SQL Command leading to SQL injection.
Notes:
https://nvd.nist.gov/vuln/detail/CVE-2021-20028
Added on
2022-03-28
Action due date
2022-04-18
Exploit prediction scoring system (EPSS) score for CVE-2021-20028
2.39%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 90 %
Percentile, the proportion of vulnerabilities that are scored at or less