Security Alert (A24-10-16): Multiple Vulnerabilities in SonicWall Products


 

Published on: 14 October 2024

  
  

Description:

SonicWall released security advisories to address multiple vulnerabilities in SonicWall systems. An attacker could exploit these vulnerabilities by sending specially crafted requests to an affected system.

 

Affected Systems:

  • SonicWall SMA1000 Appliance firmware versions prior to 12.4.3-02758
  • SonicWall SMA1000 Connect Tunnel Windows Client versions prior to 12.4.3.281

For detailed information of the affected systems, please refer to the corresponding security advisories at vendor's website.

 

Impact:

Successful exploitation of the vulnerabilities could lead to remote code execution, denial of service or privilege escalation on the affected system.

 

Recommendation:

Patches for affected systems are now available. Administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0017
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45315 (to CVE-2024-45317)


Tag: SonicWall , SMA
Tags