Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/catc0n/statuses/114468544834414578">Caitlin Condon (catc0n@infosec.exchange)'s status on Thursday, 08-May-2025 06:00:59 JST</a><a href="https://infosec.exchange/@catc0n" title="catc0n@infosec.exchange"><img src="https://gnusocial.jp/avatar/237167-48-20240121172844.webp" width="48" height="48" alt="Caitlin Condon" style="position: absolute; left: 0; top: 0;">Caitlin Condon</a><div><ul><li></ul></div></section><article><p>Today, <a href="https://infosec.exchange/@fuzz">@fuzz</a> disclosed 3 new vulnerabilities in SonicWall SMA-100 series appliances, one of which we believe may have been used in the wild. We're grateful to SonicWall's PSIRT team for a smooth and exceptionally quick response! </p><p>An attacker with access to an SMA SSLVPN user account can chain these 3 vulnerabilities to make a sensitive system directory writable, elevate their privileges to SMA administrator, and write an executable file to a system directory. This chain results in root-level remote code execution. The vulnerabilities have been fixed in the latest version.</p><p><a href="https://www.rapid7.com/blog/post/2025/05/07/multiple-vulnerabilities-in-sonicwall-sma-100-series-2025/" rel="nofollow">https://www.rapid7.com/blog/post/2025/05/07/multiple-vulnerabilities-in-sonicwall-sma-100-series-2025/</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/5019603#notice-9839191">In conversation</a><time datetime="2025-05-08T06:00:59+09:00" title="Thursday, 08-May-2025 06:00:59 JST">about 2 days ago</time> <span>from <span><a href="https://infosec.exchange/@catc0n/114468544834414578" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@catc0n/114468544834414578">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Caitlin Condon (catc0n@infosec.exchange)'s status on Thursday, 08-May-2025 06:00:59 JSTCaitlin Condon
- Ryan Emmons
Today, @fuzz disclosed 3 new vulnerabilities in SonicWall SMA-100 series appliances, one of which we believe may have been used in the wild. We're grateful to SonicWall's PSIRT team for a smooth and exceptionally quick response!
An attacker with access to an SMA SSLVPN user account can chain these 3 vulnerabilities to make a sensitive system directory writable, elevate their privileges to SMA administrator, and write an executable file to a system directory. This chain results in root-level remote code execution. The vulnerabilities have been fixed in the latest version.
https://www.rapid7.com/blog/post/2025/05/07/multiple-vulnerabilities-in-sonicwall-sma-100-series-2025/
In conversationabout 2 days ago from infosec.exchangepermalink

Public

Embed Notice

HTML Code

Corresponding Notice