cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-20051,https://securityvulnerability.io/vulnerability/CVE-2021-20051,DLL Search Order Hijacking in SonicWall Global VPN Client Installer,"The SonicWall Global VPN Client installer, specifically version 4.10.7.1117 and earlier, presents a vulnerability due to improper handling of DLL search order. This flaw allows local attackers to execute arbitrary commands on the system by exploiting the installer component. If successful, the attacker can gain control and potentially compromise the system's security, emphasizing the importance of prompt updates and mitigations for affected users.",Sonicwall,Sonicwall Global Vpn Client,7.8,HIGH,0.0010600000387057662,false,,false,false,false,,,false,false,,2022-05-04T15:20:09.000Z,0
CVE-2021-20047,https://securityvulnerability.io/vulnerability/CVE-2021-20047,DLL Search Order Hijacking Vulnerability in SonicWall Global VPN Client,"The SonicWall Global VPN Client versions up to 4.10.6 are susceptible to a DLL Search Order Hijacking vulnerability. This flaw allows a local attacker to exploit the application's improper search path for dynamic link libraries (DLLs), leading to potential remote code execution on the targeted system. Attackers can leverage this weakness to manipulate the execution flow of the application, potentially compromising system integrity.",Sonicwall,Sonicwall Global Vpn Client,7.8,HIGH,0.0010999999940395355,false,,false,false,false,,,false,false,,2021-12-08T09:55:31.000Z,0
CVE-2021-20037,https://securityvulnerability.io/vulnerability/CVE-2021-20037,Privilege Escalation in SonicWall Global VPN Client by Incorrect File Permissions,"The SonicWall Global VPN Client installer versions 4.10.5 and earlier suffer from an issue due to incorrect default file permissions. This vulnerability allows local users to escalate privileges, granting them the capability to execute commands with elevated permissions on the host operating system, potentially compromising system integrity. Organizations using affected versions should consider immediate action to mitigate risks.",Sonicwall,Sonicwall Global Vpn Client,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-09-21T08:50:11.000Z,0
CVE-2020-5144,https://securityvulnerability.io/vulnerability/CVE-2020-5144,,SonicWall Global VPN client version 4.10.4.0314 and earlier allows unprivileged windows user to elevate privileges to SYSTEM through loaded process hijacking vulnerability.,Sonicwall,Sonicwall Global Vpn Client,7.8,HIGH,0.0006300000241026282,false,,false,false,false,,,false,false,,2020-10-28T10:40:15.000Z,0
CVE-2020-5145,https://securityvulnerability.io/vulnerability/CVE-2020-5145,,SonicWall Global VPN client version 4.10.4.0314 and earlier have an insecure library loading (DLL hijacking) vulnerability. Successful exploitation could lead to remote code execution in the target system.,Sonicwall,Sonicwall Global Vpn Client,8.6,HIGH,0.0017300000181421638,false,,false,false,false,,,false,false,,2020-10-28T10:40:15.000Z,0