CyberHappenings logo
Home Browse About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

SonicWall SMA 100 Appliances Vulnerability Exploited in the Wild

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

SonicWall has released patches for a local privilege escalation vulnerability (CVE-2025-40602) in SMA 100 series appliances, which is being actively exploited. The flaw, with a CVSS score of 6.6, arises from insufficient authorization in the appliance management console. It is being exploited in combination with CVE-2025-23006 to achieve unauthenticated remote code execution with root privileges. The affected versions include 12.4.3-03093 and earlier, fixed in 12.4.3-03245, and 12.5.0-02002 and earlier, fixed in 12.5.0-02283. The vulnerability was reported by Clément Lecigne and Zander Work of Google Threat Intelligence Group (GTIG). SonicWall advises users to apply the fixes immediately due to active exploitation.

Timeline

  1. 17.12.2025 20:17 1 articles · 3h ago

    SonicWall Releases Patches for Actively Exploited CVE-2025-40602

    SonicWall has released patches for CVE-2025-40602, a local privilege escalation vulnerability in SMA 100 series appliances. The vulnerability is being actively exploited in combination with CVE-2025-23006 to achieve unauthenticated remote code execution with root privileges. The affected versions include 12.4.3-03093 and earlier, fixed in 12.4.3-03245, and 12.5.0-02002 and earlier, fixed in 12.5.0-02283.

    Show sources
    Open in new tab

Information Snippets