CVE-2019-7486

Description

Code injection in SonicWall SMA100 allows an authenticated user to execute arbitrary code in viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.4 and earlier.

Affected products

• SonicWall / SMA1009.0.0.4 and earlier – 9.0.0.4 and earlier

References

• VENDOR_ADVISORYhttps://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0021