b2b-daily
Search
Close this search box.
Search
Close this search box.
Home | IT | Cyber Security

Are Your SonicWall Devices Vulnerable to New Exploits?

Avatar photo
by Craig Anderson
May 2, 2025
Image Credit: Titima Ongkantong / Vecteezy
Are Your SonicWall Devices Vulnerable to New Exploits?
Article Highlights
Off On

The cybersecurity landscape is constantly evolving, presenting continuous challenges for both companies and individuals in securing their digital infrastructures. Recent developments have revealed that specific SonicWall Secure Mobile Access (SMA) appliances, namely the SMA 200, 210, 400, 410, and 500v models, are potentially at risk due to new exploit techniques. Despite SonicWall’s release of patches aimed at addressing these vulnerabilities, these devices have shown susceptibility to active exploitation. Two particular vulnerabilities have been under scrutiny. The first, identified as CVE-2023-44221, scored 7.2 on the CVSS scale and allows remote authenticated users with administrative privileges to inject arbitrary commands, potentially leading to an OS Command Injection. The second, CVE-2024-38475, poses a more significant threat with a CVSS score of 9.8, surfacing from improper escaping of output in the Apache HTTP Server, ultimately allowing harmful URL-file mapping.

Newly Disclosed Exploitation Techniques

Though SonicWall implemented critical security updates by December 2023 and 2024, experts still observe new exploitation tactics targeting CVE-2024-38475. Reports reveal techniques allowing unauthorized file access and session hijacking, initially hard to detect, yet increasingly evident. This prompted SonicWall to urge users to vigilantly check devices for unauthorized logins and bolster system defenses. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) highlighted the importance of staying alert, drawing attention to another vulnerability in the same series, underscoring ongoing risks. However, specifics regarding methods of exploitation remain undisclosed. Users and administrators of SonicWall SMA appliances must prioritize updates and adhere to supplementary security advice from SonicWall and CISA to effectively mitigate potential threats. In a rapidly evolving digital threat landscape, being proactive and well-informed is vital to defend against relentless cyber threats and exploitation attempts.

Explore more

Are Ryzen 9000 CPUs at Risk on ASRock Motherboards?
June 16, 2025

The compatibility of AMD’s Ryzen 9000 series CPUs with ASRock motherboards has come under scrutiny due to incidents where these CPUs experienced burnouts. This issue centers around the configurations of Precision Boost Overdrive (PBO), which aims to optimize CPU performance by modifying power and thermal constraints. However, controversies emerge as ASRock motherboards reportedly exceed AMD’s recommended values for electric design

Will Opinion Letters Clarify U.S. Labor Laws Again?
June 16, 2025

The recent announcement by the U.S. Department of Labor (DOL) regarding the reintroduction of its opinion letter program is creating waves in legal and corporate circles. In a move that could provide much-needed clarity to complex labor laws, the DOL invites individuals and organizations to seek official written interpretations on specific legal dilemmas. This initiative is set to impact various

Are Freelancer Platforms a Tax Liability Trap?
June 16, 2025

In a rapidly evolving global workforce, managing international contractors effectively has become a cornerstone for many businesses seeking flexibility and expertise. However, the reliance on Freelancer Management Systems (FMS) to handle this task comes with potential tax liabilities that are not immediately apparent. Many businesses choose FMS platforms for their streamlined processes and ease of access to a diverse range

Is the UK’s Lending Sector Ready for Modernization?
June 16, 2025

The UK’s lending sector stands at a crossroads, with innovation and modernization urgently needed to address a growing mismatch between lender offerings and consumer expectations. As highlighted in a recent report by Acquired.com, current repayment models are increasingly inadequate as they fail to reflect the ways in which consumers are now managing their finances. Modern borrowers, across diverse credit ratings,

Does Title VII Now Offer Equal Protection to All Employees?
June 16, 2025

The judicial landscape of employment discrimination has witnessed significant transformation, particularly influenced by a pivotal ruling from the Supreme Court focused on Title VII. This ruling has reshaped the legal framework, ensuring equitable protection for both majority and minority employees pursuing discrimination claims. Central to this narrative is the case of Marlean Ames, a former employee of the Ohio Department