CVE-2021-20028CISA KEVEPSS p98.0%

CVE-2021-20028SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability

SonicWall / Secure Remote Access (SRA)

Description

SonicWall Secure Remote Access (SRA) products contain an improper neutralization of a SQL Command leading to SQL injection.

Scoring

EPSS30.08% probability of exploitation · percentile 98.0% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2022-03-28

(incoming)1

TypeTargetConfidenceTier
KEVEntrySonicWall Secure Remote Access (SRA) SQL Injection Vulnerabilitykev-cve-2021-200280%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
SonicWall SSLVPN SMA100 SQL Injection Vulnerability
CVE
SonicWall SMA100 SQL Injection Vulnerability
CVE
SonicWall SMA100 Appliances OS Command Injection Vulnerability
CVE
SonicWall SMA 100 Appliances Stack-Based Buffer Overflow Vulnerability
CVE
Sophos SFOS SQL Injection Vulnerability
CVE
SonicWall SonicOS SSLVPN Improper Authentication Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.