Akira Ransomware Actors Exploit SonicWall Bug for RCE

September 9, 2024 at 05:00PM Akira ransomware affiliates are exploiting a critical remote code execution vulnerability (CVE-2024-40766) in SonicWall’s Gen 5, Gen 6, and some Gen 7 firewall products. The US CISA has added it to their list of known exploited vulnerabilities. SonicWall advises customers to update affected appliances and take measures to limit firewall … Read more

SonicWall Urges Users to Patch Critical Firewall Flaw Amid Possible Exploitation

September 6, 2024 at 01:27PM SonicWall disclosed an actively exploited security flaw in SonicOS, urging immediate patching. The vulnerability (CVE-2024-40766) affects management access and SSLVPN, with potential unauthorized access and firewall crashes. Temporary solutions include restricting firewall management and implementing multi-factor authentication. The flaw’s exploitation in the wild has led to urgent patch recommendations for … Read more

SonicWall SSLVPN access control flaw is now exploited in attacks

September 6, 2024 at 09:25AM SonicWall warns of potential exploitation of recently fixed access control flaw (CVE-2024-40766) in SonicOS. Urges admins to promptly apply patches to mitigate attacks. It seems that there’s a warning from SonicWall about a potential exploitation of a recently fixed access control flaw (CVE-2024-40766) in SonicOS. Admins are being urged to … Read more

Recent SonicWall Firewall Vulnerability Potentially Exploited in the Wild

September 6, 2024 at 09:18AM SonicWall warns customers of a potential exploit in a recently patched SonicOS vulnerability (CVE-2024-40766). The vulnerability impacts Gen 5, Gen 6, and Gen 7 firewalls, allowing unauthorized access and possible crashes. They advise immediate patching and password updates to mitigate risks. There are no reports of exploitation yet. Based on … Read more

SonicWall Issues Critical Patch for Firewall Vulnerability Allowing Unauthorized Access

August 26, 2024 at 11:36AM SonicWall has released security updates to fix a critical flaw (CVE-2024-40766) in its firewalls, affecting Gen 5, Gen 6, and Gen 7 devices running certain SonicOS versions. The vulnerability could allow unauthorized access and cause the firewall to crash. Users are urged to install the latest firmware to mitigate potential … Read more