SonicWall Products Remote Code Execution Vulnerability

Release Date: 22 Apr 2025

RISK: Extremely High Risk

TYPE: Operating Systems - Networks OS

A vulnerability was identified in SonicWall Products.  A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.

 

Note:

Exploit in the wild has been detected for CVE-2021-20035 that allows remote code execution in certain versions of the SonicWall SMA 100 Series Products. Hence, the risk level is rated as Extremely High Risk.

 

---

Impact

• Remote Code Execution

---

System / Technologies affected

• SonicWall SMA 100 Series (SMA 200, SMA 210, SMA 400, SMA 410, SMA 500v (ESX, KVM, AWS, Azure)) 9.0.0.10-28sv and earlier

• SonicWall SMA 100 Series (SMA 200, SMA 210, SMA 400, SMA 410, SMA 500v (ESX, KVM, AWS, Azure)) 10.2.0.7-34sv and earlier

• SonicWall SMA 100 Series (SMA 200, SMA 210, SMA 400, SMA 410, SMA 500v (ESX, KVM, AWS, Azure)) 10.2.1.0-17sv and earlier

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://www.sonicwall.com/support/notices/product-notice-arbitrary-command-injection-vulnerability-in-sonicwall-sma-100-series-appliances/250415122607607

---

Vulnerability Identifier

• CVE-2021-20035

---

Source

• SonicWall

---

Related Link

• https://www.sonicwall.com/support/notices/product-notice-arbitrary-command-injection-vulnerability-in-sonicwall-sma-100-series-appliances/250415122607607
• https://www.cisa.gov/news-events/alerts/2025/04/16/cisa-adds-one-known-exploited-vulnerability-catalog