Vendor security team contributor

SonicWall

cited as evidence in 7 · CNA assigner on 15 of 16 known-exploited records. Every aggregate on this page is recomputed from the records listed below — each one already cited to its public source.

psirt.global.sonicwall.com ↗ · home of the cited advisories

records cited in

deterministic count

finder / reporter credits

CVE.org credits

CVE records catalogued (CNA)

assigner

48%

avg modeled exploit prob.

FIRST EPSS, 16/16

62%

ransomware-associated

10 of 16 · CISA flag

Known for

— recomputed from this contributor’s own records

SurfacesEdge / remote-access infra (15), Server / web platform (1)

WeaknessInjection (6), Path traversal / file (3), Memory safety (2), Authentication (2), Authorization / access control (2)

PortfolioSonicWall (15), Apache (1)

Narrative reach

— how far this contributor’s records carry an attacker, front door → lights out

1Front door

16reach this stage

→

2Keys to the kingdom

16reach this stage

→

3Lateral reach

15reach this stage

→

4Data at risk

3reach this stage

→

5Lights out

0reach this stage

Furthest any of these records carries an attacker: 4 · Data at risk. 3 of 16 narrative-framed records reach data-at-risk or lights-out. (furthest-position idiom, reused from the landing map; the stage mapping is a model output over cited evidence.)

Recent highlights

— this contributor’s newest known-exploited records

CVE-2025-40602SonicWall2%KEV CVE-2023-44221SonicWall75%KEV CVE-2024-38475Apache100%KEV CVE-2021-20035SonicWall4%KEV CVE-2024-53704SonicWall95%RWKEV CVE-2025-23006SonicWall22%RWKEV

Every record they’re cited in

— all 16, each linked to its cited source

This is the evidence behind every number above. Sorted ransomware-first, then by modeled exploit probability.

CVE-2021-20038SonicWall100%RWKEV CVE-2019-7481SonicWall100%RWKEV CVE-2024-53704SonicWall95%RWKEV CVE-2021-20021SonicWall83%RWKEV CVE-2021-20023SonicWall51%RWKEV CVE-2021-20016SonicWall40%RWKEV CVE-2021-20028SonicWall30%RWKEV CVE-2025-23006SonicWall22%RWKEV CVE-2021-20022SonicWall17%RWKEV CVE-2024-40766SonicWall16%RWKEV CVE-2024-38475Apache100%KEV CVE-2023-44221SonicWall75%KEV CVE-2020-5135SonicWall27%KEV CVE-2019-7483SonicWall4%KEV CVE-2021-20035SonicWall4%KEV CVE-2025-40602SonicWall2%KEV

Coverage & confidence

— what this profile claims, and what it does not

Established (cited)

Cited in 16 known-exploited records — the list below; every one links to its public source.

Catalogued 15 CVE record(s) as the CNA assigner (from CVE.org).

Coverage gaps — stated, not hidden

This profile is an aggregation: it asserts only what the listed records already cite — no new external claim about the contributor is made.

The TYPE badge and the narrative-stage mapping are editorial (our call), labeled as such, not a sourced fact.