SonicWall Points Crucial Patch for Firewall Vulnerability Permitting Unauthorized Entry

Aug 26, 2024Ravie LakshmananVulnerability / Enterprise Safety

SonicWall has launched safety updates to deal with a crucial flaw impacting its firewalls that, if efficiently exploited, might grant malicious actors unauthorized entry to the units.

The vulnerability, tracked as CVE-2024-40766 (CVSS rating: 9.3), has been described as an improper entry management bug.

“An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash,” the corporate stated in an advisory launched final week.

“This issue affects SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 devices running SonicOS 7.0.1-5035 and older versions.”

Cybersecurity

The problem has been addressed within the beneath variations –

  • SOHO (Gen 5 Firewalls) – 5.9.2.14-13o
  • Gen 6 Firewalls – 6.5.2.8-2n (for SM9800, NSsp 12400, and NSsp 12800) and 6.5.4.15.116n (for different Gen 6 Firewall home equipment)

SonicWall stated the vulnerability is just not reproducible in SonicOS firmware model larger than 7.0.1-5035, though it is beneficial that customers set up the newest firmware.

The networking gear vendor makes no point out of the flaw being exploited within the wild. That stated, it is crucial that customers take steps to rapidly apply the patches to safeguard in opposition to potential threats.

Final yr, Google-owned Mandiant revealed {that a} suspected China-nexus menace actor tracked as UNC4540 focused unpatched SonicWall Safe Cellular Entry (SMA) 100 home equipment to drop Tiny SHell and set up long-term persistence.

Cybersecurity

Numerous China-linked exercise clusters have more and more shifted operations to concentrate on edge infrastructure to breach targets and essential distant entry with out attracting any consideration.

This consists of an intrusion set dubbed Velvet Ant that was just lately found leveraging a zero-day exploit in opposition to Cisco Swap home equipment to propagate a brand new malware referred to as VELVETSHELL, a hybrid personalized model of Tiny SHell and 3proxy.

Discovered this text attention-grabbing? Observe us on Twitter and LinkedIn to learn extra unique content material we publish.

Recent articles