PT-2021-13729 · Sonicwall · Sonicwall Email Security Virtual Appliance

Published

2021-05-13

Updated

2021-06-04

CVE-2021-20025

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: SonicWall Email Security Virtual Appliance versions 10.0.9 and earlier

Description: The issue concerns a default username and password used during initial setup. An attacker could exploit this temporary user account to access the Virtual Appliance remotely, but only when the device is freshly installed and not connected to Mysonicwall.

Recommendations: For SonicWall Email Security Virtual Appliance versions 10.0.9 and earlier, consider changing the default username and password immediately after setup to prevent potential exploitation. As a temporary workaround, ensure the device is connected to Mysonicwall as soon as possible after installation to mitigate the risk.

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2021-20025

Affected Products

Sonicwall Email Security Virtual Appliance

PT-2021-13729 · Sonicwall · Sonicwall Email Security Virtual Appliance

CVE-2021-20025

Weakness Enumeration

Related Identifiers

Affected Products

References · 4