Vulnerability cyber

SonicWall

Apr 21, 2025 1 min read
SonicWall

SonicWall has experienced a cyber attack due to a remote code execution vulnerability affecting its Secure Mobile Access (SMA) appliances. These flaws impacted various SMA models and were exploited despite being patched four years ago. The flaw allowed remote threat actors to inject arbitrary commands and execute arbitrary code. This has been under active exploitation since at least January 2025 as confirmed by cybersecurity company Arctic Wolf and federal agencies. As a response to the attack, SonicWall has updated the security advisory and revised the CVSS score based on the newfound impacts.

Source: https://www.bleepingcomputer.com/news/security/sonicwall-sma-vpn-devices-targeted-in-attacks-since-january/

TPRM report: https://scoringcyber.rankiteo.com/company/sonicwall

"id": "son502042125",
"linkid": "sonicwall",
"type": "Vulnerability",
"date": "4/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Cybersecurity',
                        'name': 'SonicWall',
                        'type': 'Company'}],
 'attack_vector': 'Exploitation of a remote code execution vulnerability',
 'description': 'SonicWall has experienced a cyber attack due to a remote code '
                'execution vulnerability affecting its Secure Mobile Access '
                '(SMA) appliances. These flaws impacted various SMA models and '
                'were exploited despite being patched four years ago. The flaw '
                'allowed remote threat actors to inject arbitrary commands and '
                'execute arbitrary code. This has been under active '
                'exploitation since at least January 2025 as confirmed by '
                'cybersecurity company Arctic Wolf and federal agencies. As a '
                'response to the attack, SonicWall has updated the security '
                'advisory and revised the CVSS score based on the newfound '
                'impacts.',
 'impact': {'systems_affected': 'Various SMA models'},
 'references': [{'source': 'Arctic Wolf'}, {'source': 'Federal agencies'}],
 'response': {'communication_strategy': 'Updated security advisory and revised '
                                        'CVSS score'},
 'title': 'SonicWall Cyber Attack',
 'type': 'Remote Code Execution',
 'vulnerability_exploited': 'Remote code execution vulnerability in Secure '
                            'Mobile Access (SMA) appliances'}
Published by
Jeremy C
Jeremy C
You might also like
Vulnerability cyber

Apple

public 1 min read
Multiple vulnerabilities in macOS SMBClient, identified as CVE-2025-24269 and CVE-2025-24235, and an unassigned flaw, allow attackers to execute arbitrary code…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.