CVE-2023-44221CISA KEVEPSS p99.4%
CVE-2023-44221SonicWall SMA100 Appliances OS Command Injection Vulnerability
SonicWall / SMA100 Appliances
Description
SonicWall SMA100 appliances contain an OS command injection vulnerability in the SSL-VPN management interface that allows a remote, authenticated attacker with administrative privilege to inject arbitrary commands as a 'nobody' user.
Scoring
| EPSS | 75.10% probability of exploitation · percentile 99.4% · 2026-06-17T12:03:21Z |
CISA KEV entry
Added to KEV: 2025-05-01
(incoming)1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| KEVEntry | SonicWall SMA100 Appliances OS Command Injection Vulnerabilitykev-cve-2023-44221 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.