NOTE: I am thinking of changing the design a bit to instead of having one post per item, to one post per day with everything. Here is a first try CISA – Adds 32 Known Exploited Vulnerabilities to Catalog – LINK – CSV Download Link CISA – Vulnerability Summary for the Week of March 21, […]
Tag: sonicwall
Attackers are actively targeting critical RCE bug in SonicWall Secure Mobile Access
LINK SonicWall have a vulnerability CVE-2021-20038 that is a RCE and its being actively exploited. Act Now
SonicWall Patches Y2K22 bug
LINK SonicWall has released updates to resolve a Y2K22 bug it has. Referred to as Y2K22, the bug exists because some software stores dates in a 32-bit integer format, where the largest possible number is 2147483647. Because the dates are stored in the YYMMDDhhmm format, when the new year started the date was converted to […]
SonicWall release updates on Critical and Medium Vulnerabilities
LINK SMA 100 series appliances, which include SMA 200, 210, 400, 410 and 500v products, need to get updates.
SonicWall warns users to IMMEDIATELY PATCH
LINK The appliances that are affected are SMA 100, 200, 210, 400, 410, and 500v. This vulnerability is listed under CVE-2021-20034 and is due to an improper limitation of a file path to a restricted directory, potentially leading to arbitrary file deletion without any authentication, which can result in a remote attacker obtaining administrator access […]
SonicWall Firewalls under imminent threat
LINK Numerous SonicWall firewalls are being targeted. Read the link above immediately if you use SonicWall.
Old SonicWall vulnerability still works on SRA (eol) devices
LINK If I read this right, old patches/updates to SonicWall devices for CVE-2019-7481 dont entirely fix the vulnerability on SRA devices. These old SRA devices are no longer supported and will not be fixed, time to make a touch decision on removing it
SonicWall urges everyone to update their NSM firewalls
LINK SonicWall firewalls are affected by a post auth vulnerability – if you have one, looks to updating.
SonicWall actively being attacked by new Zero-Day
LINK SonicWall zero-day vulnerability has been used by ransomware group. If you have SonicWall, time to investigate for an update.