SonicWall firewall products are in dire need of patching. The company also calls for it. The reason is a bug that allows an attacker to execute code with admin rights or take over the entire machine.
A flaw in SonicWall’s firewall products makes devices extremely vulnerable. Leaks can take over entire systems. To do this, attackers exploit a vulnerability that allows an unauthenticated attacker to execute remote code with administrator rights. In addition to this vulnerability, a number of other, less threatening vulnerabilities are also active.
SMA 100 . line
In the meantime, Sonicwall itself already has release patches for bugs. Weaknesses are specifically found in the SMA 200, 210, 400, 410 and 500v. Anyone with these firewall products in-house can download the patch via their own account.
Products with vulnerabilities are all part of the Secure Mobile Access (SMA) 100 line. The line was developed by SonicWall to provide secure, comprehensive, remote access to corporate resources. The SMA 100 line also received a correction at the beginning of this year. Then Discover Zero Day in the layout.
No abuse reported yet
SonicWall also reports that there have been no reports of vulnerabilities being abused yet. Notification of active errors also came via another route: through security companies Rapid7 and NCCgroup.
Users should install the patches as soon as possible, as SonicWall is a common target for cybercriminals. actually three times before This year, cybercriminals tried to attack or hijack SonicWall devices. In the latest incident, the company warned of ransomware targeting EOL equipment.
