The Australian Cyber Security Centre has issued an urgent alert about the active exploitation of CVE-2024-40766, a critical vulnerability affecting SonicWall SSL VPN devices. Threat actors, including those deploying Akira ransomware, are exploiting this flaw to gain unauthorized access and cause firewall crashes. #CVE-2024-40766 #SonicWall #AkiraRansomware
Keypoints
- The vulnerability CVE-2024-40766 impacts multiple generations of SonicWall SSL VPN devices running SonicOS 7.0.1-5035 and earlier versions.
- Exploitation of this flaw allows attackers to bypass access controls and potentially crash firewalls, leading to network outages.
- Immediate firmware updates and credential resets are essential security measures advised by SonicWall and ASD’s ACSC.
- Legacy devices such as Gen 5 and NSA 2600 are vulnerable but do not receive security patches, requiring hardware replacement or isolation.
- SonicWall has introduced new protections in SonicOS 7.3, but effective security depends on timely updates and proper configuration management.
Read More: https://thecyberexpress.com/sonicwall-ssl-vpn-flaw-cve-2024-40766/