NewsSecurity Vulnerabilities

Critical vulnerability in SonicWall SonicOS [CVE-2024-40766]

SonicWall has issued a security advisory regarding a critical access control vulnerability (CVE-2024-40766) in its SonicOS.

This flaw could allow attackers to gain unauthorised access to resources or cause the firewall crash.

The vulnerability CVE-2024-40766, with a CVSS score of 9.3, is caused by improper access control in the SonicOS management interface, potentially leading to unauthorised access and firewall crashes.

Affected Products

  • Gen 5: SOHO devices running version 5.9.2.14-12o and older;
  • Gen 6: TZ, NSA, and SM models running versions 6.5.4.14-109n and older;
  • Gen 7: TZ and NSA models running SonicOS build version 7.0.1-5035 and older.

It is recommended updating as soon as possible.

Kerry Dean

Kerry is a Content Creator at www.systemtek.co.uk she has spent many years working in IT support, her main interests are computing, networking and AI.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.