Security Alert (A24-12-05): Multiple Vulnerabilities in SonicWall SMA 100 Series Products


 

Published on: 06 December 2024

  
  

Description:

SonicWall released a security advisory to address multiple vulnerabilities in SMA 100 series products. An attacker could exploit these vulnerabilities by sending specially crafted requests to an affected system.

 

Affected Systems:

  • SonicWall SMA 100 series prior to version 10.2.1.14-75sv

For detailed information of the affected systems, please refer to the corresponding security advisories at vendor's website.

 

Impact:

Successful exploitation of the vulnerabilities could lead to remote code execution, elevation of privilege, information disclosure or security restriction bypass on the affected system.

 

Recommendation:

Patches for affected systems are now available. Administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38475
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40763
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45318 (to CVE-2024-45319)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53702 (to CVE-2024-53703)


Tag: SonicWall , SMA
Tags