SonicWall SMA-100 Unauth RCE Exploit (CVE-2021-20038)
Bad Blood is an exploit for CVE-2021-20038, a stack-based buffer overflow in the httpd binary of SMA-100 series systems using firmware versions 10.2.1.x. I’ve written a lot of the technical details here:
The exploit, as written, will open up a telnet bind shell on port 1270. An attacker that connects to the shell will achieve execution as nobody.