The issues affect SonicWall Email Security (SonicWall ES), an email security solution that companies use in the cloud or on-premises to scan email traffic.
The following identifiers were assigned to the vulnerabilities: CVE-2021-20021 (CVSS 9.4, bypass authentication, create an administrator account), CVE-2021-20023 (CVSS 6.7, read local files) and CVE-2021-20022 (CVSS 6, 7, modifying local files, or loading backdoor web shells).
FireEye is tracking the aforementioned hack [...]
Attackers are known to have successfully gained access to the company’s internal network and stole proprietary tools that FireEye uses to test its clients’ networks.
FireEye CEO Kevin Mandia says the attackers searched for information regarding a number of government customers of the company, but did not reach customers’ information. In general, he described the unknowns as “highly sophisticated attackers whose discipline, operational security and methods of work suggest that this was a government-sponsored [...]