Vulnerability Details CVE-2020-5131
SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute code with the same privilege in the host operating system. This vulnerability impact SonicWall NetExtender Windows client version 9.0.815 and earlier.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.7%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
Products affected by CVE-2020-5131
-
cpe:2.3:a:sonicwall:netextender:-
-
cpe:2.3:a:sonicwall:netextender:7.5
-
cpe:2.3:a:sonicwall:netextender:7.5.226
-
cpe:2.3:a:sonicwall:netextender:7.5.227
-
cpe:2.3:a:sonicwall:netextender:8.0
-
cpe:2.3:a:sonicwall:netextender:8.0.236
-
cpe:2.3:a:sonicwall:netextender:8.0.238
-
cpe:2.3:a:sonicwall:netextender:9.0.815