Free Shipping On Many Orders Over $350 (Exclusion Apply)

Chat To Us - 7am-10pm - 7 Days A Week

SonicWall Product Security Notice: Path Traversal Vulnerability

SonicWall Product Security Notice: Path Traversal Vulnerability

The Tech Geeks |

Security Notice: Pre-Authentication Path Traversal Vulnerability in SMA 1000 12.4.2

SonicWall PSIRT has confirmed a pre-authentication path traversal vulnerability in specific Secure Mobile Access (SMA) 1000 Series firmware versions. This vulnerability potentially allows an unauthenticated attacker to access arbitrary files and directories stored in the SMA 1000 appliance.

SonicWall PSIRT is not aware of active exploitation against this vulnerability in the wild, nor has a proof of concept (POC) been made public.

Please carefully review the knowledge base (KB) article and follow guidance for immediate firmware upgrade.

OVERVIEW

Advisory ID: SNWLID-2023-0001

Product(s): SMA 1000 Series (includes SMA 6200, 6210, 7200, 7210, 8200v)

Impacted Version(s): 12.4.2 only

Fixed Version(s): 12.4.2-05352

CVSS: 7.5 (High)

Exploitation: None observed.

Notes: All other SMA 1000 firmware, including version 12.4.1, are NOT impacted by this vulnerability. No action is required for these organizations.

  • Chat 7am to 10pm

    We love what we do!

  • Flat Rate Shipping Costs

    Standard $20 or Express $30

  • Want The Best Prices?

    Request a quote