CVE-2021-20038 - SonicWall SMA 100 Appliances Stack-Based Buffer Overflow Vulnerability
Project:SonicWall
Product:SMA 100 Appliances
Date Added:2022-01-28Due Date:2022-02-11
Vulnerability Name
SonicWall SMA 100 Appliances Stack-Based Buffer Overflow Vulnerability
Description
SonicWall SMA 100 devies are vulnerable to an unauthenticated stack-based buffer overflow vulnerability where exploitation can result in code execution.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-20038
Related News Articles
SonicWall urges admins to patch critical RCE flaw in SMA 100 devicesJuly 24, 2025
SonicWall SMA devices hacked with OVERSTEP rootkit tied to ransomwareJuly 16, 2025
UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP RootkitJuly 16, 2025
RansomHub Becomes 2024's Top Ransomware Group, Hitting 600+ Organizations GloballyFebruary 14, 2025