Multiple critical vulnerabilities affecting SonicWall’s SMA100 series SSL-VPN appliances, highlighting persistent security flaws in network infrastructure devices. The vulnerabilities, designated CVE-2025-40596, CVE-2025-40597, and CVE-2025-40598, demonstrate fundamental programming errors that enable pre-authentication attacks against firmware version 10.2.1.15. Key Takeaways1. Stack overflow, heap overflow, and XSS in SonicWall SMA100 SSL-VPN devices.2. Both overflows triggered without authentication via […]
The post SonicWall SMA100 Series N-day Vulnerabilities Technical Details Revealed appeared first on Cyber Security News.
This article has been indexed from Cyber Security News
Read the original article: