CVE-2021-20028: SonicWall Secure Remote Access (SRA) SQL Injection
SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability. SonicWall Secure Remote Access (SRA) products contain an improper neutralization of a SQL Command leading to SQL injection.
- CISA KEV-listed (remediation due 2022-04-18)
- used in ransomware campaigns
- EPSS 80.3% (99.1% percentile)