SonicWall NetExtender

by SonicWall Inc.v10.3.5

Last updated Jun 8, 2026

SonicWall NetExtender provides secure remote access for Windows and Linux users.

Install with winget

$ winget install --id SonicWall.NetExtender --exact --version 10.3.5

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for SonicWall NetExtender

SonicWall NetExtender uses EXE (NSIS). The silent install switches are /S.

One-line silent install (x64, machine scope)

NXSetupU-x64-10.3.5.exe /S

See the full silent install reference for SonicWall NetExtender →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

About

SonicWall’s SSL VPN NetExtender allows you to provide easy and secure access to Windows and Linux users. This transparent software enables remote users to securely connect and run any application on the company network. Users can upload and download files, mount network drives, and access resources as if they were on the local network.

Installers · v10.3.5

Architecture	Type	Scope	Download
x86	EXE NSIS	machine	Direct
x86	MSI WiX	machine	Direct
x64	EXE NSIS	machine	Direct
x64	MSI WiX	machine	Direct
arm64	MSI WiX	machine	Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

8 known CVEs via NVD

high8.8Patched in wingetCVE-2024-29014affects before 10.2.341Jul 17, 2024
Vulnerability in SonicWall SMA100 NetExtender Windows (32 and 64-bit) client 10.2.339 and earlier versions allows an attacker to arbitrary code execution when processing an EPC Client update.
Vendor advisory
medium5.5Patched in wingetCVE-2023-6340affects <=10.2.337Jan 17, 2024
SonicWall Capture Client version 3.7.10, NetExtender client version 10.2.337 and earlier versions are installed with sfpmonitor.sys driver. The driver has been found to be vulnerable to Denial-of-Service (DoS) caused by Stack-based Buffer Overflow vulnerability.
Vendor advisory
high7.3Patched in wingetCVE-2023-44220affects <=10.2.336Oct 26, 2023
SonicWall NetExtender Windows (32-bit and 64-bit) client 10.2.336 and earlier versions have a DLL Search Order Hijacking vulnerability in the start-up DLL component. Successful exploitation via a local attacker could result in command execution in the target system.
Vendor advisory
high8.8Patched in wingetCVE-2023-44218affects <=10.2.336Oct 2, 2023
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain access to the host Windows operating system with 'SYSTEM' level privileges, leading to a local privilege escalation (LPE) vulnerability.
Vendor advisory
high7.8Patched in wingetCVE-2023-44217affects <=10.2.336Oct 2, 2023
A local privilege escalation vulnerability in SonicWall Net Extender MSI client for Windows 10.2.336 and earlier versions allows a local low-privileged user to gain system privileges through running repair functionality.
high7.8Patched in wingetCVE-2022-22281affects <=10.2.322May 13, 2022
A buffer overflow vulnerability in the SonicWall SSL-VPN NetExtender Windows Client (32 and 64 bit) in 10.2.322 and earlier versions, allows an attacker to potentially execute arbitrary code in the host windows operating system.
Vendor advisory
medium5.3Patched in wingetCVE-2020-5147affects <=10.2.300Jan 8, 2021
SonicWall NetExtender Windows client vulnerable to unquoted service path vulnerability, this allows a local attacker to gain elevated privileges in the host operating system. This vulnerability impact SonicWall NetExtender Windows client version 10.2.300 and earlier.
Vendor advisory
high7.8Patched in wingetCVE-2020-5131affects <=9.0.815Jul 17, 2020
SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute code with the same privilege in the host operating system. This vulnerability impact SonicWall NetExtender Windows client version 9.0.815 an...
Vendor advisory

Source: NVD, updated 1h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Related apps

Connect TunnelSonicWall Inc.
SonicWall.ConnectTunnelv12.5.0.221
Connect Tunnel provides secure remote access for IT-managed devices.
SonicWall Cloud Secure EdgeSonicWall Inc.
SonicWall.CloudSecureEdgev4.2.0
Cloud-delivered zero-trust access client for securely connecting users to private and internet resources.
KaringSupernova Nebula LLC
KaringX.Karingv1.2.19+2209
A singbox GUI based on flutter.
Zapret 2loop-uh
loop-uh.Zapret2v21.0.0.6
Bypassing Discord and YouTube blocks
Cloudflare One ClientCloudflare, Inc.
Cloudflare.Warpv26.4.1390.0
1.1.1.1 with WARP replaces the connection between your device and the Internet with a modern, optimized, protocol.
spacedesk Windows DRIVERdatronicsoft Inc.
Datronicsoft.SpacedeskDriver.Serverv2.2.22.0
Spacedesk Driver Software for Windows PRIMARY PC (server) runs only with Windows 11 and Windows 10

More from SonicWall Inc. or browse network, vpn.

Frequently asked questions

How do I install SonicWall NetExtender on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id SonicWall.NetExtender --exact --version 10.3.5. winget downloads the installer from SonicWall Inc. and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install SonicWall NetExtender silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id SonicWall.NetExtender --exact 10.3.5 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for SonicWall NetExtender?

SonicWall NetExtender uses EXE (NSIS). Run the downloaded installer with: NXSetupU-x64-10.3.5.exe /S. The silent switches are /S.

How do I uninstall SonicWall NetExtender via winget?

Run: winget uninstall --id SonicWall.NetExtender --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from SonicWall NetExtender's Apps & Features entry.

Is SonicWall NetExtender free?

SonicWall NetExtender is distributed under Proprietary. Refer to the publisher (https://www.sonicwall.com/products/remote-access/vpn-clients) for the full license terms - Wingetly itself does not charge for installation.

Does SonicWall NetExtender work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls SonicWall NetExtender directly from the publisher.

How do I keep SonicWall NetExtender up to date?

Run winget upgrade --id SonicWall.NetExtender --exact, or winget upgrade --all to update everything winget tracks. We index 10 versions of SonicWall NetExtender from microsoft/winget-pkgs.

Recent versions

10.3.5latest
10.3.4
10.3.3
10.3.2
10.3.1
10.3.0
10.2.341
10.2.339
10.2.338
10.2.337