SonicWall Responds to Security Threat with Essential Firewall Patch



SonicWall Alerts Users to Critical Vulnerability in SonicOS: Urgent Patch Required

SonicWall is urgently warning customers about a critical vulnerability in its SonicOS network security appliance operating system. Tracked as CVE-2024-40766, this flaw poses a serious risk by potentially allowing unauthorized access to firewalls or causing them to crash.


Vulnerability Details: The issue is described as an “improper access control vulnerability” within SonicWall’s SonicOS management interface. This flaw could enable unauthorized access to system resources and, under certain conditions, lead to a firewall crash. The vulnerability affects SonicWall Gen 5, Gen 6, and Gen 7 firewalls.

Affected Versions and Recommended Updates:

  • Gen 5 Firewalls (SOHO): Update to version 5.9.2.14-13o
  • Gen 6 Firewalls: Update to version 6.5.2.8-2n for SM9800, NSsp 12400, and NSsp 12800, or 6.5.4.15.116n for other Gen 6 models
  • Gen 7 Devices: Users are advised to upgrade to the latest firmware. The vulnerability does not appear in SonicOS versions higher than 7.0.1-5035, but updating to the latest version is still recommended for maximum security.

SonicWall has not reported any active exploitation of this vulnerability in the wild, but the potential risks make it critical for users to apply the updates promptly.

Security Implications and Context: The vulnerability is especially concerning given the number of SonicWall devices exposed on the internet. According to Netlas.io, there are approximately 650,000 internet-exposed SonicWall firewalls, including over 400,000 in the United States. While it is unclear how many of these are affected by CVE-2024-40766, the widespread presence of these devices highlights the importance of immediate patching.

Last year, Mandiant revealed that sophisticated malware, believed to be of Chinese origin, was found on SonicWall appliances. This underscores the ongoing threat landscape and the need for vigilance in applying security updates.

Action Required: To protect against potential threats and ensure the security of your network infrastructure, it is crucial to apply the available patches without delay. Regularly updating firmware and staying informed about security advisories are essential practices for maintaining robust cybersecurity.

No comments:

Global Espionage? Chinese Cyber Centre Accuses U.S. of Tech Firm Hacks

  U.S. Accused of Cyberattacks and Trade Secret Theft by Chinese Cybersecurity Centre A Chinese cybersecurity organization has accused the U...