SonicWall has addressed three critical security vulnerabilities in its hosted and on-premises email security product that are being actively exploited in the wild. The flaws were discovered and reported to the company by FireEye’s Mandiant subsidiary on March 26, 2021, after the cybersecurity firm detected post-exploitation web shell activity on an internet-accessible system. FireEye is tracking the malicious activity under the moniker UNC2682. The vulnerabilities were executed in conjunction to obtain administrative access and code execution on a SonicWall ES device.
Source: https://thehackernews.com/2021/04/3-zero-day-exploits-hit-sonicwall.html