Security News > 2020 > February > Serious Vulnerabilities Expose SonicWall SMA Appliances to Remote Attacks
2020-02-18 14:42
Several serious vulnerabilities have been found by a researcher in Secure Mobile Access and Secure Remote Access appliances made by SonicWall.
After these vulnerabilities were disclosed, Alain Mowat of Swiss cybersecurity company SCRT decided to analyze other enterprise VPN products to see if they contain similar vulnerabilities.
Mowat discovered that the company's SMA 100 series and SRA appliances are affected by other vulnerabilities.
SonicWall published advisories in December 2019 for each of the vulnerabilities found by Mowat, but the advisories only mention SMA devices.
SonicWall SMA100 9.0.0.4 and 9.0.0.5 patch the vulnerabilities identified by the researcher.
News URL
Related news
- CISA tags SonicWall VPN flaw as actively exploited in attacks (source)
- SonicWall SMA VPN devices targeted in attacks since January (source)
- Airplay-enabled devices open to attack via “AirBorne” vulnerabilities (source)
- SonicWall warns of more VPN flaws exploited in attacks (source)
- SonicWall urges admins to patch VPN flaw exploited in attacks (source)
- Ivanti Patches EPMM Vulnerabilities Exploited for Remote Code Execution in Limited Attacks (source)