CVE-2024-40766

Akira Ransomware Revives SonicWall Flaw CVE-2024-40766, Uses ‘UnPAC the Hash’ to Breach Networks

Akira ransomware

Akira Ransomware Revives SonicWall Flaw CVE-2024-40766, Uses ‘UnPAC the Hash’ to Breach Networks

Do Son October 13, 2025

Between July and August 2025, global security teams have observed a resurgence in Akira ransomware incidents targeting...

Akira Ransomware Exploits SonicWall VPN Accounts With Lightning-Fast Intrusions Akira ransomware affiliates Akira Ransomware, SonicWall VPN

Akira ransomware affiliates Akira Ransomware, SonicWall VPN

Akira Ransomware Exploits SonicWall VPN Accounts With Lightning-Fast Intrusions

Do Son September 29, 2025

Arctic Wolf has observed a major uptick in Akira ransomware activity since late July 2025, with attackers...

Thousands of SonicWall Devices Remain Vulnerable to CVE-2024-40766 PyPI Packages Leak

PyPI Packages Leak

Thousands of SonicWall Devices Remain Vulnerable to CVE-2024-40766

Do Son January 6, 2025

In September 2024, a critical vulnerability in SonicWall NSA devices, tracked as CVE-2024-40766, was disclosed. Since then,...

Akira Ransomware Exploit CVE-2024-40766 in SonicWall SonicOS Akira ransomware tactics

Akira ransomware tactics

Akira Ransomware Exploit CVE-2024-40766 in SonicWall SonicOS

Do Son October 21, 2024

The notorious Akira ransomware group continues to adapt and refine its methods, solidifying its position as one...

CISA Alerts on Active Exploitation of Flaws in ImageMagick, Linux Kernel, and SonicWall SonicWall vulnerability

SonicWall vulnerability

CISA Alerts on Active Exploitation of Flaws in ImageMagick, Linux Kernel, and SonicWall

Do Son September 9, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning, adding three actively exploited vulnerabilities...

Akira Ransomware Exploits SonicWall SSLVPN Flaw (CVE-2024-40766) Akira ransomware affiliates Akira Ransomware, SonicWall VPN

Akira ransomware affiliates Akira Ransomware, SonicWall VPN

Akira Ransomware Exploits SonicWall SSLVPN Flaw (CVE-2024-40766)

Do Son September 8, 2024

SonicWall has issued a warning: the recently patched critical access control vulnerability, tracked as CVE-2024-40766, is now...

SonicWall Confirms Critical CVE-2024-40766 Vulnerability Actively Exploited in the Wild CVE-2024-40766 exploited SonicOS Vulnerability, DoS Attack

CVE-2024-40766 exploited SonicOS Vulnerability, DoS Attack

SonicWall Confirms Critical CVE-2024-40766 Vulnerability Actively Exploited in the Wild

Do Son September 6, 2024

On September 5, 2024, SonicWall updated its security advisory with an urgent warning: CVE-2024-40766, a critical access...

🚨

Receive alerts for vulnerabilities being exploited in the wild.

⚡

Get notified instantly when a Proof of Concept (PoC) exploit is published.

🔍

Access critical info on vulnerabilities even when marked as "RESERVED".

🧠

Insights powered by decades of expertise and global intelligence sources.

🎯

Customize alerts with up to 10 keywords for your specific tech stack.

📊

Export the raw CVE database for SIEM integration and reporting.

CVE-2026-12569
A critical remote code execution (RCE) vulnerability has been reported in PTC Windchill PDMlink and PTC FlexPLM. The...
CVE-2026-20230CVSS 8.6
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified...
CVE-2026-28496CVSS 9.4
FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 have a Server-Side Template...
CVE-2026-21509CVSS 7.8
Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a...
CVE-2026-34908CVSS 10.0
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi...
CVE-2026-34909CVSS 10.0
A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS...
CVE-2026-34910CVSS 10.0
A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi...
CVE-2025-67038CVSS 9.8
An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell command to write...
CVE-2024-23692CVSS 9.8
Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This...
CVE-2026-48907
A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated...