August 26, 2024 at 11:36AM
SonicWall has released security updates to fix a critical flaw (CVE-2024-40766) in its firewalls, affecting Gen 5, Gen 6, and Gen 7 devices running certain SonicOS versions. The vulnerability could allow unauthorized access and cause the firewall to crash. Users are urged to install the latest firmware to mitigate potential threats. No active exploitation has been reported.
Key takeaways from the meeting notes:
– SonicWall has released security updates to address a critical flaw (CVE-2024-40766) in its firewalls that could grant unauthorized access to devices.
– The vulnerability affects SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 devices running SonicOS 7.0.1-5035 and older versions.
– The issue has been addressed in specific firmware versions for different firewall models, and it’s recommended that users install the latest firmware.
– While there is no mention of the flaw being exploited in the wild, users are urged to apply the patches promptly to safeguard against potential threats.
– Last year, Mandiant revealed that a suspected China-nexus threat actor targeted unpatched SonicWall Secure Mobile Access (SMA) 100 appliances.
This information is critical for ensuring that the necessary steps are taken to mitigate the security vulnerability and protect the organization’s assets.