mirror of
https://github.com/gobysec/GobyVuls.git
synced 2025-05-06 02:31:35 +00:00
SonicWall SSL-VPN RCE
There are vulnerabilities in the historical version of SonicWall SSL-VPN. Remote attackers use CGI programs to handle logic vulnerabilities and construct malicious User-Agents, which can cause remote arbitrary command execution and gain host control authority.
FOFA query rule: app="SonicWALL-SSL-VPN"
Demo
