CVE-2020-5130

Summary

SonicOS SSLVPN LDAP login request allows remote attackers to cause external service interaction (DNS) due to improper validation of the request. This vulnerability impact SonicOS version 6.5.4.4-44n and earlier.

Affected Software

VendorProductVersion RangeStatus
SonicWallSonicOS6.5.4.4-44n and earlieraffected

Weaknesses

  • CWE-20: CWE-20: Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References