{"vulnerability": "CVE-2021-20022", "sightings": [{"uuid": "ec572bc6-bbca-41dc-b8e8-ff3b6d82c184", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20022", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2021-11-20T09:53:52.000000Z"}, {"uuid": "844c8bc5-78b9-431f-890f-d844023aea39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20022", "type": "seen", "source": "MISP/f5030aca-7d5a-43a4-ae03-8f4ac8e85422", "content": "", "creation_timestamp": "2021-11-08T08:58:19.000000Z"}, {"uuid": "6c1646eb-5bf9-4afc-afbf-d23aa7e9f2a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20022", "type": "seen", "source": "MISP/dc0ab53d-ede1-487f-b863-5da3336d7fc1", "content": "", "creation_timestamp": "2024-11-14T06:08:57.000000Z"}, {"uuid": "d1557d70-d7c6-4310-acf1-ddeccad80c52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20022", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2970927", "content": "", "creation_timestamp": "2024-12-24T20:21:52.415178Z"}, {"uuid": "1a4998ae-36c3-45e6-b6dd-0e2382c7586c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20022", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2970925", "content": "", "creation_timestamp": "2024-12-24T20:21:50.676827Z"}, {"uuid": "9b8d2d8b-64c0-4466-a53c-236793d6d78a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20022", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2970924", "content": "", "creation_timestamp": "2024-12-24T20:21:49.698351Z"}, {"uuid": "85254fa5-7c8f-44c6-b04d-dfe7879587ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20022", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:09:51.000000Z"}, {"uuid": "ab013d2e-bd1d-4b10-bc4e-728974403930", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20022", "type": "seen", "source": "https://t.me/cKure/4953", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 Zero-Day Exploits in SonicWall Email Security Lead to Enterprise Compromise.\n\nhttp://www.fireeye.com/blog/threat-research/2021/04/zero-day-exploits-in-sonicwall-email-security-lead-to-compromise.html\n\nCVE-2021-20021\nCVSS: 9.4\nUnauthorized administrative account creation\n\nCVE-2021-20022\nCVSS: 6.7\nPost-authentication arbitrary file upload\n\nCVE-2021-20023\nCVSS: 6.7\nPost-authentication arbitrary file read", "creation_timestamp": "2021-04-21T01:32:05.000000Z"}, {"uuid": "113fac00-c180-41f6-8b1c-5c03db4b6bae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2021-20022", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=572", "content": "", "creation_timestamp": "2021-04-21T04:00:00.000000Z"}, {"uuid": "4bf7b182-b1e2-4317-9a40-f99dcc6d7a9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2021-20022", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/facc46a1-ecb0-4dac-a1c0-f0d1866bb91f", "content": "", "creation_timestamp": "2026-02-02T12:29:03.392834Z"}, {"uuid": "6a562353-489b-4e5d-b5c1-cd1338209e99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20022", "type": "seen", "source": "https://t.me/arpsyndicate/1118", "content": "#ExploitObserverAlert\n\nCVE-2021-20022\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-20022. SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to upload an arbitrary file to the remote host.\n\nFIRST-EPSS: 0.003300000\nNVD-IS: 5.9\nNVD-ES: 1.2", "creation_timestamp": "2023-12-04T04:59:59.000000Z"}, {"uuid": "d3d8a83c-0953-48b6-abc0-bc9e4a743eba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20022", "type": "exploited", "source": "https://t.me/NeKaspersky/777", "content": "\u0425\u0430\u043a\u0435\u0440\u044b \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442 0-day \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 SonicWall\n\n\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f FireEye \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430 \u043e \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u0432\u0437\u043b\u043e\u043c\u0430 \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0439 \u0438 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0438 \u0431\u044d\u043a\u0434\u043e\u0440\u043e\u0432 \u0431\u043b\u0430\u0433\u043e\u0434\u0430\u0440\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0430\u0445 SonicWall. \n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043a\u0430\u0441\u0430\u0435\u0442\u0441\u044f SonicWall Email Security(\u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b \u044d\u043b\u0435\u043a\u0442\u0440\u043e\u043d\u043d\u043e\u0439 \u043f\u043e\u0447\u0442\u044b). \u041a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442 \u0435\u0433\u043e \u0434\u043b\u044f \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u043f\u043e\u0447\u0442\u043e\u0432\u043e\u0433\u043e \u0442\u0440\u0430\u0444\u0444\u0438\u043a\u0430 \u0432 \u043e\u0431\u043b\u0430\u0447\u043d\u043e\u043c \u0438 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u043e\u043c \u0444\u043e\u0440\u043c\u0430\u0442\u0430\u0445. \n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0442\u0440\u0438:\n\nCVE-2021-20021 (CVSS 9,4, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0438\u0442\u044c \u043e\u0431\u0445\u043e\u0434 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438, \u0441\u043e\u0437\u0434\u0430\u0432\u0430\u0442\u044c \u0443\u0447\u0451\u0442\u043d\u0443\u044e \u0437\u0430\u043f\u0438\u0441\u044c \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430), CVE-2021-20023\u00a0(CVSS 6,7, \u0447\u0442\u0435\u043d\u0438\u0435 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432) , CVE-2021-20022\u00a0(CVSS 6,7, \u043c\u043e\u0434\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044f \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432, \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438  \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u043e\u0432, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0445\u0441\u044f \u043a\u0430\u043a \u0431\u044d\u043a\u0434\u043e\u0440).\n\n\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043f\u0430\u0442\u0447\u0438 \u0434\u043b\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0431\u043e\u043b\u044c\u0448\u0435 \u043d\u0435\u0434\u0435\u043b\u0438 \u043d\u0430\u0437\u0430\u0434, \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 \u043e\u043d\u0430 \u043e\u0431 \u044d\u0442\u043e\u043c  \u0442\u043e\u043b\u044c\u043a\u043e \u043d\u0430 \u0434\u043d\u044f\u0445. \u041f\u043e\u044d\u0442\u043e\u043c\u0443 \u0432 \u0435\u0435 \u0430\u0434\u0440\u0435\u0441 \u0441\u043d\u043e\u0432\u0430 \u043f\u043e\u0441\u044b\u043f\u0430\u043b\u0441\u044f \u0448\u043a\u0432\u0430\u043b \u043a\u0440\u0438\u0442\u0438\u043a\u0438 \u043e\u0442 \u0418\u0411-\u0442\u0443\u0441\u043e\u0432\u043a\u0438. \n\n\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u043d\u0430\u0434\u043e \u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u0442\u044c \u0441\u0432\u043e\u0435\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e!", "creation_timestamp": "2021-04-22T15:55:13.000000Z"}]}