CVE-2015-4173
CVE-2015-4173 is a medium-severity vulnerability in Sonicwall Netextender with a CVSS 2.0 base score of 6.9. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-428.
Key facts
- Severity: Medium (CVSS 2.0 base score 6.9)
- EPSS exploit prediction: 2% (79th percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-428
- Affected product: Sonicwall Netextender
- Published:
- Last modified:
Description
Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv, allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder.
Frequently asked questions
- What is CVE-2015-4173?
- Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv, allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder.
- How severe is CVE-2015-4173?
- CVE-2015-4173 has a CVSS 2.0 base score of 6.9, rated medium severity.
- Is CVE-2015-4173 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 2% (79th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2015-4173?
- CVE-2015-4173 affects Sonicwall Netextender. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2015-4173?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2015-4173 published?
- CVE-2015-4173 was published on 2015-08-26 and last updated on 2026-06-17.
References
- http://packetstormsecurity.com/files/133302/Dell-SonicWall-NetExtender-7.5.215-Privilege-Escalation.html
- http://www.securityfocus.com/archive/1/536303/100/0/threaded
- http://www.securitytracker.com/id/1033417
- https://support.software.dell.com/product-notification/157537
Affected products (1)
- cpe:2.3:a:sonicwall:netextender:*:*:*:*:*:windows:*:*
More vulnerabilities in Sonicwall Netextender
- CVE-2024-29014 — High (CVSS 8.8): Vulnerability in SonicWall SMA100 NetExtender Windows (32 and 64-bit) client 10.2.339 and earlier versions allows an…
- CVE-2023-44218 — High (CVSS 8.8): A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host…
- CVE-2023-44217 — High (CVSS 7.8): A local privilege escalation vulnerability in SonicWall Net Extender MSI client for Windows 10.2.336 and earlier…
- CVE-2022-22281 — High (CVSS 7.8): A buffer overflow vulnerability in the SonicWall SSL-VPN NetExtender Windows Client (32 and 64 bit) in 10.2.322 and…
- CVE-2020-5131 — High (CVSS 7.8): SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to…
- CVE-2023-44220 — High (CVSS 7.3): SonicWall NetExtender Windows (32-bit and 64-bit) client 10.2.336 and earlier versions have a DLL Search Order…
All CVEs affecting Sonicwall Netextender →
Other CWE-428 vulnerabilities
- CVE-2022-50935 — Critical (CVSS 9.8): Flame II HSPA USB Modem contains an unquoted service path vulnerability in its Windows service configuration. Attackers…
- CVE-2023-38408 — Critical (CVSS 9.8): The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to…
- CVE-2022-36344 — Critical (CVSS 9.8): An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License' bundled with multiple…
- CVE-2020-9292 — Critical (CVSS 9.8): An unquoted service path vulnerability in the FortiSIEM Windows Agent component may allow an attacker to gain elevated…
- CVE-2019-17658 — Critical (CVSS 9.8): An unquoted service path vulnerability in the FortiClient FortiTray component of FortiClientWindows v6.2.2 and prior…
- CVE-2019-8459 — Critical (CVSS 9.8): Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process without…