CVE-2025-40605
- EPSS 0.05%
- Veröffentlicht 20.11.2025 12:19:17
- Zuletzt bearbeitet 12.12.2025 15:43:42
A Path Traversal vulnerability has been identified in the Email Security appliance allows an attacker to manipulate file system paths by injecting crafted directory-traversal sequences (such as ../) and may access files and directories outside the in...
CVE-2025-40604
- EPSS 0.03%
- Veröffentlicht 20.11.2025 12:17:14
- Zuletzt bearbeitet 12.12.2025 15:44:04
Download of Code Without Integrity Check Vulnerability in the SonicWall Email Security appliance loads root filesystem images without verifying signatures, allowing attackers with VMDK or datastore access to modify system files and gain persistent ar...
CVE-2021-20023
- EPSS 42.68%
- Veröffentlicht 20.04.2021 12:15:12
- Zuletzt bearbeitet 12.11.2025 14:32:02
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to read an arbitrary file on the remote host.
CVE-2021-20021
- EPSS 90.15%
- Veröffentlicht 09.04.2021 18:15:13
- Zuletzt bearbeitet 10.11.2025 19:04:58
A vulnerability in the SonicWall Email Security version 10.0.9.x allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host.
CVE-2021-20022
- EPSS 32.6%
- Veröffentlicht 09.04.2021 18:15:13
- Zuletzt bearbeitet 10.11.2025 19:07:07
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to upload an arbitrary file to the remote host.