Conversation

Notices

1. Embed this notice
   screaminggoat (screaminggoat@infosec.exchange)'s status on Wednesday, 12-Feb-2025 08:43:55 JST screaminggoat

   • Thijs Alkemade

   Happy #PatchTuesday (well it is a Tuesday) from SonicWall: SonicOS Affected By Multiple Vulnerabilities

   • CVE-2024-40762 (7.1 high) SonicOS SSLVPN Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
   • CVE-2024-53704 (8.2 high) SonicOS SSLVPN Authentication Bypass Vulnerability
   • CVE-2024-53705 (6.5 medium) SonicOS SSH Management Server-Side Request Forgery Vulnerability
   • CVE-2024-53706 (7.8 high) Gen7 SonicOS Cloud NSv SSH Config Function Local Privilege Escalation Vulnerability

   There is no evidence that these vulnerabilities are being exploited in the wild.

   h/t: @xnyhps

   #sonicwall #vulnerability #cve #infosec #cybersecurity

   • scriptjunkie repeated this.
   • Embed this notice
     screaminggoat (screaminggoat@infosec.exchange)'s status on Wednesday, 12-Feb-2025 08:43:55 JST screaminggoat

     in reply to

     BishopFox: SonicWall CVE-2024-53704: SSL VPN Session Hijacking
     See parent toots for the security advisory. BishopFox intends to publish vulnerability CVE-2024-53704 (9.8 critical) SonicOS SSLVPN Authentication Bypass Vulnerability in the next 90 days.

     Our current research indicates more than 5,000 affected SonicWall devices remain accessible on the internet. Although significant reverse-engineering effort was required to find and exploit the vulnerability, the exploit itself is rather trivial.

     UPDATED 10 February 2025: Bishopfox included full exploitation details in their blog post.

     #sonicwall #CVE_2024_53704 #sonicos #sslvpn #vulnerability #CVE #infosec #cybersecurity