Sonicwall News Articles
Recent news articles refferecing the vendors vulnerabilities.
SonicWall Edge Access Devices Hit by Zero-Day Attacks
In the attacks against the vendor's SMA1000 line, threat actors chained a new zero-day flaw with a critical vulnerability disclosed earlier this year.
Security AffairsU.S. CISA adds Cisco, SonicWall, and ASUS flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Cisco, SonicWall, and ASUS vulnerabilities to its Known Exploited Vulnerabilities catalog..
Cyber PressCVE-2025-40602Hackers Actively Exploit SonicWall SMA1000 Zero-Day to Escalate Privileges
The vulnerability, a local privilege escalation flaw, allows attackers with access to the management console to gain elevated privileges and potentially take complete control of affected systems.
gbhackers.comCVE-2025-40602Hackers Actively Exploit SonicWall SMA1000 Zero-Day to Escalate Privileges
SonicWall has issued an urgent security advisory warning of active exploitation of a local privilege escalation vulnerability affecting its SMA1000 appliances.
Help Net SecurityCVE-2025-40602Exploited SonicWall zero-day patched (CVE-2025-40602) - Help Net Security
Attackers have been leveraging CVE-2025-40602, a local privilege escalation vulnerability in SonicWall SMA 1000 appliances.
Arctic WolfCVE-2025-40602CVE-2025-40602 | Arctic Wolf
SonicWall has released fixes for an actively exploited medium-severity zero-day vulerability in the SonicWall SMA1000 Appliance Management Console, tracked as CVE-2025-40602
The Hacker NewsCVE-2025-40602SonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 Appliances
SonicWall released fixes for an actively exploited SMA 100 vulnerability enabling privilege escalation and chained root access attacks.
Sonicwall warns of new SMA1000 zero-day exploited in attacks
SonicWall warned customers today to patch a vulnerability in the SonicWall SMA1000 Appliance Management Console (AMC) that was chained in zero-day attacks to escalate privileges.
New SonicWall SonicOS flaw allows hackers to crash firewalls
American cybersecurity company SonicWall urged customers today to patch a high-severity SonicOS SSLVPN security flaw that can allow attackers to crash vulnerable firewalls.
Akira Hits SonicWall VPNs in Broad Ransomware Campaign
Akira ransomware actors are currently targeting SonicWall firewall customers vulnerable to a bug discovered last year.
Akira ransomware breaching MFA-protected SonicWall VPN accounts
Ongoing Akira ransomware attacks targeting SonicWall SSL VPN devices continue to evolve, with the threat actors found to be successfully authenticating despite OTP MFA being enabled on accounts. Researchers suspect this may through the use of previously stolen OTP seeds, though the exact method rema...
Akira ransomware exploiting critical SonicWall SSLVPN bug again
The Akira ransomware gang is actively exploiting CVE-2024-40766, a year-old critical-severity access control vulnerability, to gain unauthorized access to SonicWall devices.
The Hacker NewsCVE-2024-40766SonicWall SSL VPN Flaw and Misconfigurations Actively Exploited by Akira Ransomware Hackers
Akira ransomware exploits SonicWall CVE-2024-40766 with 9.3 CVSS flaw, driving 40 attacks in July 2025.
SonicWall finds no SSLVPN zero-day, links ransomware attacks to 2024 flaw
SonicWall says that recent Akira ransomware attacks exploiting Gen 7 firewalls with SSLVPN enabled are exploiting an older vulnerability rather than a zero-day flaw.
The Hacker NewsCVE-2024-40766SonicWall Confirms Patched Vulnerability Behind Recent VPN Attacks, Not a Zero-Day
SonicWall confirms recent SSL VPN attacks link to patched CVE-2024-40766 and reused passwords, urging password resets.
SonicWall says recent attack wave involved previously disclosed flaw, not zero-day
The company said it had linked recent hacks to customersâ use of legacy credentials when migrating from Gen 6 to Gen 7 firewalls.
Akira Ransomware Exploits SonicWall SMA100 Vulnerabilities: What You Need to Know | Bitsight
New SonicWall SMA100 vulnerabilities (CVE-2025-40596 to CVE-2025-40599) could enable remote code executionâeven on patched devices. While Akira ransomware activ
Help Net SecurityCVE-2025-40599SonicWall firewalls targeted in ransomware attacks, possibly via zero-day - Help Net Security
Attackers using the Akira ransomware and possibly a zero-day exploit have been targeting SonicWall firewalls since July 15, 2025.
Hack ReadCVE-2025-40596SonicWall Urges Patch After 3 Major VPN Vulnerabilities Disclosed
watchTowr details SonicWall SMA100 flaws (CVE-2025-40596, 40597, 40598). How pre-auth stack/heap overflows and XSS, put SSL-VPNs at risk.
Cyber PressCVE-2025-40600Critical SonicWall SSL VPN Flaw Allows Attackers to Launch DoS Attacks on Firewalls
The vulnerability, designated CVE-2025-40600 and tracked as SNWLID-2025-0013, carries a CVSS severity score of 5.9 and specifically impacts the SSL VPN interface component of affected devices.
Researchers Uncover N-day Vulnerabilities in SonicWall SMA100 Series
The vulnerabilities, disclosed on July 28, 2025, affect firmware version 10.2.1.15 and highlight persistent issues with HTTP header parsing in network security devices.
Researchers Reveal Technical Details of SonicWall SMA100 Series N-Day Vulnerabilities
Security researchers have disclosed technical details of three previously patched vulnerabilities affecting SonicWall's SMA100 series SSL-VPN appliances.
watchTowr LabsStack Overflows, Heap Overflows, and Existential Dread (SonicWall SMA100 CVE-2025-40596, CVE-2025-40597 and CVE-2025-40598)
Itâs 2025, and at this point, weâre convinced thereâs a secret industry-wide pledge: every network appliance must include at least one trivially avoidable HTTP header parsing bug - preferably pre-auth. Bonus points if it involves sscanf. If thatâs the case, well done! SonicWallâs SMA100 series
SonicWall urges admins to patch critical RCE flaw in SMA 100 devices
SonicWall urges customers to patch SMA 100 series appliances against a critical authenticated arbitrary file upload vulnerability that can let attackers gain remote code execution.
Help Net SecurityCVE-2025-40599Sonicwall fixes critical flaw in SMA appliances, urges customers to check for compromise (CVE-2025-40599) - Help Net Security
Sonicwall is asking customers SMA 100 Series devices to patch a newly uncovered vulnerability (CVE-2025-40599) as soon as possible.