High Threat Security Alert (A25-09-16): Multiple Vulnerabilities in SonicWall Products


 

Published on: 23 September 2025

Description:

SonicWall released security advisories to address multiple vulnerabilities in SonicWall systems. An attacker could exploit these vulnerabilities by sending specially crafted requests to an affected system.

Reports indicated that the security restriction bypass vulnerability (CVE-2024-38475) in SonicWall SMA 100 Series is actively exploited. System administrators are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.

 

Affected Systems:

  • SonicWall SMA100 series prior to version 10.2.1.15-81sv

For detailed information of the affected systems, please refer to the corresponding security advisories at vendor's website.

 

Impact:

Successful exploitation of the vulnerabilities could lead to remote code execution or security restriction bypass on the affected system.

 

Recommendation:

Patches for affected systems are now available. Administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0015
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38475
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-40599


Tag: SonicWall , SMA
Tags