QwikSec

Security Database

CVE

CWE

Training

CVE-2024-22398

Published: Mar 14, 2024

Modified: Aug 8, 2024

PUBLISHED

Description

An improper Limitation of a Pathname to a Restricted Directory (Path Traversal) vulnerability in SonicWall Email Security Appliance could allow a remote attacker with administrative privileges to conduct a directory traversal attack and delete arbitrary files from the appliance file system.

Vendor	Product	Versions
SonicWall	Email Security	affected `10.0.26.7807 and earlier versions`

Weaknesses (CWE)

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0006

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.