Fortiguard

Unrestricted Upload of File with Dangerous Type and Improper Privilege Management Vulnerability for SonicWall Email Security

Description

A vulnerability in the SonicWall Email Security version 10.0.9.x allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host or post-authenticated attacker to upload an arbitrary file to the remote host.

Affected Applications

SonicWall Email Security

CVE References

CVE-2021-20021 CVE-2021-20022

Other References

https://psirt.global.sonicwall.com/vuln-list

ID	4983
Created	May 03, 2023
Description Updated	May 03, 2023
Severity
Coverage	FortiClient
OS	Windows
Vendor	SonicWall
Patch	manual
Application	SonicWall Email Security

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiGate

FortiClient

FortiSandBox

FortiMail

FortiADC

FortiWeb

FortiCNP

FortiNDR

FortiDeceptor

FortiEDR

FortiAnalyzer

FortiTester

Threat Encyclopedia

Unrestricted Upload of File with Dangerous Type and Improper Privilege Management Vulnerability for SonicWall Email Security

Description

Affected Applications

CVE References

Other References

Telemetry

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiGate

FortiClient

FortiSandBox

FortiMail

FortiADC

FortiWeb

FortiCNP

FortiNDR

FortiDeceptor

FortiEDR

FortiAnalyzer

FortiTester

Threat Intelligence Center

Resource Center

About

About FortiGuard Labs

Partners

Threat Encyclopedia

Unrestricted Upload of File with Dangerous Type and Improper Privilege Management Vulnerability for SonicWall Email Security

Description

Affected Applications

CVE References

Other References

Telemetry

Threat Intelligence
Center