Sonicwall SSL VPN ShellShock RCE

Sonicwall SSL-VPN ShellShock is a vulnerability in an obsolete version of Bash, making it vulnerable to unauthenticated remote code via the /cgi-bin/jarrewrite.sh URL.

Mitigation / Precaution

• In order to patch this vulnerability, please install the official patch Sonicwall SSL-VPN made available for supported, vulnerable instances.

Written by

Jijith Rajan

Cyber Security Engineer