CVE-2020-5145

Summary

SonicWall Global VPN client version 4.10.4.0314 and earlier have an insecure library loading (DLL hijacking) vulnerability. Successful exploitation could lead to remote code execution in the target system.

Affected Software

VendorProductVersion RangeStatus
SonicWallSonicWall Global VPN Client4.10.4.0314 and earlieraffected

Weaknesses

  • CWE-427: CWE-427: Uncontrolled Search Path Element

ADP Enrichment

CVE Program Container

Additional References

References