CVE-2021-20027

Summary

A buffer overflow vulnerability in SonicOS allows a remote attacker to cause a Denial of Service (DoS) by sending a specially crafted request. This vulnerability affects SonicOS Gen5, Gen6, Gen7 platforms, and SonicOSv virtual firewalls.

Affected Software

VendorProductVersion RangeStatus
SonicWallSonicOSSonicOS 5.9.1.13 and earlieraffected
SonicWallSonicOSSonicOSv 6.5.4.4 and earlieraffected
SonicWallSonicOSSonicOS 6.0.5.3 and earlieraffected
SonicWallSonicOSSonicOS 6.5.1.12 and earlieraffected
SonicWallSonicOSSonicOS 6.5.4.7 and earlieraffected
SonicWallSonicOSSonicOS 7.0.1-R1219 and earlieraffected
SonicWallSonicOSSonicOS 7.0.1-R514 and earlieraffected
SonicWallSonicOSSonicOS 7.0.1-R1262 and earlieraffected

Weaknesses

  • CWE-120: CWE-120: Buffer Copy without Checking Size of Input

ADP Enrichment

CVE Program Container

Additional References

References