CVE-2021-20051

Summary

SonicWall Global VPN Client 4.10.7.1117 installer (32-bit and 64-bit) and earlier versions have a DLL Search Order Hijacking vulnerability in one of the installer components. Successful exploitation via a local attacker could result in command execution in the target system.

Affected Software

VendorProductVersion RangeStatus
SonicWallSonicWall Global VPN ClientGlobal VPN Client 4.10.7.1117 and earlier versionsaffected

Weaknesses

  • CWE-427: CWE-427: Uncontrolled Search Path Element

ADP Enrichment

CVE Program Container

Additional References

References