SonicWall, a leading cybersecurity provider, has issued an important security advisory warning of multiple vulnerabilities affecting its SonicOS operating system. These flaws, impacting both Gen6 and Gen7 firewalls, range from authentication bypasses to privilege escalation, leaving devices exposed to potential cyberattacks.
Vulnerabilities Detailed:
The advisory details four significant vulnerabilities:
- CVE-2024-40762 (CVSS 7.1): A weakness in the SSLVPN authentication token generator could allow attackers to predict the token and bypass authentication, gaining unauthorized access.
- CVE-2024-53704 (CVSS 8.2): An improper authentication vulnerability in the SSLVPN mechanism could allow remote attackers to bypass authentication.
- CVE-2024-53705 (CVSS 6.5): A server-side request forgery (SSRF) vulnerability in the SSH management interface could allow attackers to establish TCP connections to arbitrary IP addresses and ports.
- CVE-2024-53706 (CVSS 7.8): A privilege escalation vulnerability in the Gen7 SonicOS Cloud platform NSv (AWS and Azure editions only) could allow attackers to gain root privileges and potentially execute code.
Mitigating the Risk:
SonicWall strongly advises all users of affected SonicOS versions to upgrade to the latest fixed release versions immediately.
- Gen6 Hardware Firewalls: Upgrade to 6.5.5.1-6n or higher.
- Gen7 Firewalls: Upgrade to 7.1.3-7015 or higher.
- Gen7 NSv: Upgrade to 7.0.1-5165 or higher.
- TZ80: Upgrade to 8.0.0-8037 or higher.
Workarounds:
In addition to updating, SonicWall recommends several workarounds to minimize potential risks:
- Limit access: Restrict SSLVPN and SSH management access to trusted sources or disable access from the internet entirely.
No Evidence of Active Exploitation:
SonicWall states that there is currently no evidence of these vulnerabilities being exploited in the wild. However, the company urges users to take immediate action to protect their systems.
Related Posts:
- SonicWall Confirms Critical CVE-2024-40766 Vulnerability Actively Exploited in the Wild
- Akira Ransomware Exploits SonicWall SSLVPN Flaw (CVE-2024-40766)
- Unauthenticated Denial of Service vulnerability in SONICOS
- SonicWall Patches Unauthenticated DoS Flaw (CVE-2024-40764) in SonicOS IPSec VPN
- CVE-2024-22394 Exposed: SonicWall SSL-VPN’s Authentication Flaw
