■■■■□ Zero-Day Exploits in SonicWall Email Security Lead to Enterprise Compromise.
http://www.fireeye.com/blog/threat-research/2021/04/zero-day-exploits-in-sonicwall-email-security-lead-to-compromise.html
CVE-2021-20021
CVSS: 9.4
Unauthorized administrative account creation
CVE-2021-20022
CVSS: 6.7
Post-authentication arbitrary file upload
CVE-2021-20023
CVSS: 6.7
Post-authentication arbitrary file read
https://t.me/cKure/7688