Security News > 2024 > September > SonicWall SSLVPN access control flaw is now exploited in attacks

SonicWall SSLVPN access control flaw is now exploited in attacks
2024-09-06 13:20

SonicWall is warning that a recently fixed access control flaw tracked as CVE-2024-40766 in SonicOS is now "potentially" exploited in attacks, urging admins to apply patches as soon as possible. [...]


News URL

https://www.bleepingcomputer.com/news/security/sonicwall-sslvpn-access-control-flaw-is-now-exploited-in-attacks/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2024-08-23 CVE-2024-40766 Unspecified vulnerability in Sonicwall Sonicos
An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash.
network
low complexity
sonicwall
critical
9.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Sonicwall 113 0 41 74 38 153