SonicWall NetExtender Windows Client DLL Search Order Hijacking Vulnerability

SonicWall Security Advisory

SonicWall NetExtender Windows (32 and 64-bit) client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Successful exploitation via a local attacker could result in command execution in the target system.

SonicWall strongly advises SSL VPN NetExtender client users to upgrade to the latest release version.
CVE: CVE-2023-44220
Last updated: Oct. 25, 2023, 8:25 a.m.