-
@ ch0k1
2025-02-15 21:50:06
SonicWall Firewall Vulnerability Exploited After PoC Publication
https://www.securityweek.com/sonicwall-firewall-vulnerability-exploited-after-poc-publication/
Threat actors started exploiting a recent SonicWall firewall vulnerability this week, shortly after proof-of-concept (PoC) code targeting it was published, cybersecurity firm Arctic Wolf reports.
The flaw, tracked as CVE-2024-53704, is a high-severity authentication bypass caused by an issue in the SSLVPN authentication mechanism of SonicOS.
SonicWall announced in early January that patches for this bug and another authentication bypass issue, tracked as CVE-2024-40762, were included in SonicOS versions 7.1.3-7015 and 8.0.0-8037, saying that it had no evidence of either of them being exploited in attacks.
originally posted at https://stacker.news/items/886969