Improper Access Control Vulnerability Affects Sonicwall Firewalls

CVE-2024-40766

9.8CRITICAL

Key Information

Vendor: Sonicwall
Status: Sonicos
Vendor: CVE Published:; 23 August 2024

Badges

🔥 No. 1 Trending😄 Trended👾 Exploit Exists📰 News Worthy

Summary

The vulnerability identified as CVE-2024-40766 affects SonicWall next-gen firewalls, allowing attackers unauthorized access to resources and potentially causing the appliances to crash. The flaw also affects SSL-VPN. Although no exploitation has been confirmed, SonicWall recently updated their advisory to indicate it may be exploited in the wild. Customers are urged to apply the security patches as soon as possible, as threat actors have been known to exploit vulnerabilities in SonicWall products in the past. This vulnerability has a 9.3 CVSS v3 base score, indicating its severity.

CISA Reported

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2024-40766 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Affected Version(s)

SonicOS = 5.9.2.14-12o and older versions

SonicOS = 6.5.4.14-109n and older versions

SonicOS = 7.0.1-5035 and older versions

News Articles

The Cyber Express

CVE-2024-40766CVE-2024-47575

Major IT Vulnerabilities Reported In Fortinet, SonicWall, Grafana

Cyble's report reveals critical vulnerabilities in Fortinet, SonicWall, and Grafana Labs impacting over 1 million assets.

3 weeks ago

Security Affairs

CVE-2024-40766

Fog and Akira ransomware attacks exploit SonicWall VPN flaw

Fog and Akira ransomware operators are exploiting SonicWall VPN flaw CVE-2024-40766 to breach enterprise networks.

3 weeks ago

BleepingComputer

CVE-2024-40766

Fog ransomware targets SonicWall VPNs to breach corporate networks

Fog and Akira ransomware operators have increased their exploitation efforts of CVE-2024-40766, a critical access control flaw that allows unauthorized access to resources on the SSL VPN feature of SonicWall SonicOS firewalls.

4 weeks ago

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🔥
Vulnerability reached the number 1 worldwide trending spot.
Sep 13, 2024
Vulnerability started trending.
Sep 10, 2024
👾
Exploit exists.
Sep 10, 2024
First article discovered by Help Net Security
Aug 30, 2024
Vulnerability published.
Aug 23, 2024
Vulnerability Reserved.
Jul 10, 2024

Collectors

NVD DatabaseMitre DatabaseCISA Database12 News Article(s)