Security News > 2020 > February > Serious Vulnerabilities Expose SonicWall SMA Appliances to Remote Attacks
2020-02-18 14:42
Several serious vulnerabilities have been found by a researcher in Secure Mobile Access and Secure Remote Access appliances made by SonicWall.
After these vulnerabilities were disclosed, Alain Mowat of Swiss cybersecurity company SCRT decided to analyze other enterprise VPN products to see if they contain similar vulnerabilities.
Mowat discovered that the company's SMA 100 series and SRA appliances are affected by other vulnerabilities.
SonicWall published advisories in December 2019 for each of the vulnerabilities found by Mowat, but the advisories only mention SMA devices.
SonicWall SMA100 9.0.0.4 and 9.0.0.5 patch the vulnerabilities identified by the researcher.
News URL
Related news
- SonicWall firewall bug leveraged in attacks after PoC exploit release (source)
- SonicWall firewalls now under attack: Patch ASAP or risk intrusion via your SSL VPN (source)
- CISA Adds Palo Alto Networks and SonicWall Flaws to Exploited Vulnerabilities List (source)
- Over 400 IPs Exploiting Multiple SSRF Vulnerabilities in Coordinated Cyber Attack (source)
- GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)