Summary: SonicWall has alerted customers to urgently upgrade their firewall’s SonicOS firmware to address a critical authentication bypass vulnerability affecting SSL VPN and SSH management. The vulnerability, tracked as CVE-2024-53704, has a high CVSS score of 8.2 and is susceptible to exploitation.
Threat Actor: Unknown | Unknown
Victim: SonicWall customers | SonicWall customers
Key Point :
- Customers are urged to upgrade to the latest SonicOS firmware versions to mitigate the vulnerability.
- Additional vulnerabilities with medium to high severity have also been identified and require attention.
- Mitigations include limiting access to trusted sources and restricting SSH management access.