QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2021-20037

Back to search

CVE-2021-20037

Published: Sep 21, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

SonicWall Global VPN Client 4.10.5 installer (32-bit and 64-bit) incorrect default file permission vulnerability leads to privilege escalation which potentially allows command execution in the host operating system. This vulnerability impacts GVC 4.10.5 installer and earlier.

VendorProductVersions

SonicWall

SonicWall Global VPN Client

affected
Global VPN Client 4.10.5 and earlier

Weaknesses (CWE)

CWE-276

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now