SonicWall, a network security company recently launched a security patch assisting to the vulnerability in which their SMA 100 series devices are prone to a serious flaw in which the attackers can get unauthorized access on the targeted devices.
According to the reports of The Hacker News, the flaw that has been tracked as CVE-2021-20034 is rated 9.1 out of a maximum of 10 on the CVSS scoring system, and could allow an adversary to bypass path traversal checks and delete any file, hence, rebooting the default factory settings and losing the data saved or unsaved.
A San-Jose firm said in a report on Thursday that the flaw is due to the improper limitation of a file path to a restricted directory potentially leading to arbitrary file deletion as ‘nobody’. Although, there is no evidence that this vulnerability has affected the users of the devices.
SonicWall has assured its customers that the flaw hasn’t impacted any device yet but it is advisable to install and update the security patch as soon as possible to save the devices from any such vulnerabilities.