Sonicwall – TheCyberThrone

SonicWall SSLVPN Vulnerability CVE-2025-40601

A critical vulnerability was discovered affecting SonicWall firewalls’ SSLVPN service, identified as CVE-2025-40601. This stack-based buffer overflow flaw allows unauthenticated remote attackers to crash vulnerable devices, potentially causing severe denial-of-service…

PravinKarthik November 23, 2025

Massive SonicWall Cloud Backup Breach Exposes Customer Networks

In early October 2025, SonicWall confirmed a major security incident that now stands as one of the most significant configuration leaks in recent memory. An unauthorized party accessed firewall configuration…

PravinKarthik October 14, 2025

MySonicWall Breach Exposes Firewall Backup Data

Introduction On September 16, 2025, SonicWall announced a breach impacting its MySonicWall cloud service. Threat actors managed to access cloud-based firewall configuration backups for a subset of SonicWall customers, raising…

PravinKarthik September 18, 2025

CVE-2025-32818 impacts SonicOS SSLVPN

CVE-2025-32818 is a critical vulnerability affecting the SonicOS SSLVPN Virtual Office interface. This flaw allows remote, unauthenticated attackers to exploit a Null Pointer Dereference, causing the firewall to crash and…

PravinKarthik April 28, 2025

SonicWall impacted by CVE-2025-23009 and CVE-2025-23010

Two vulnerabilities, CVE-2025-23009 and CVE-2025-23010, affecting the SonicWall NetExtender Windows Client, have been disclosed. These vulnerabilities pose medium risks but highlight the importance of proactive patching and strong security controls…

PravinKarthik April 11, 2025

CISA Adds Palo Alto and SonicWall Vulnerabilities to KEV

The Cybersecurity and Infrastructure Security Agency (CISA) has recently identified and added two critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog. These vulnerabilities, affecting Palo Alto Networks' PAN-OS and…

PravinKarthik February 19, 2025

CVE-2024-53704 impacts SonicWall

CVE-2024-53704 is a high-severity security vulnerability identified in SonicWall products, specifically within the SSLVPN authentication mechanism. This vulnerability poses a significant threat to the integrity and security of the affected…

PravinKarthik February 13, 2025

CVE-2024-53704 impacts SonicWall

CVE-2024-53704 is a high-severity vulnerability impacting SonicWall's SSLVPN authentication mechanism. This flaw, with a CVSS score of 8.2, allows remote attackers to bypass authentication and gain unauthorized access to the…

PravinKarthik January 11, 2025