NOTE: I am thinking of changing the design a bit to instead of having one post per item, to one post per day with everything. Here is a first try CISA – Adds 32 Known Exploited Vulnerabilities to Catalog – LINK – CSV Download Link CISA – Vulnerability Summary for the Week of March 21, […]
LINK SonicWall have a vulnerability CVE-2021-20038 that is a RCE and its being actively exploited. Act Now
LINK SonicWall has released updates to resolve a Y2K22 bug it has. Referred to as Y2K22, the bug exists because some software stores dates in a 32-bit integer format, where the largest possible number is 2147483647. Because the dates are stored in the YYMMDDhhmm format, when the new year started the date was converted to […]
LINK SMA 100 series appliances, which include SMA 200, 210, 400, 410 and 500v products, need to get updates.
LINK The appliances that are affected are SMA 100, 200, 210, 400, 410, and 500v. This vulnerability is listed under CVE-2021-20034 and is due to an improper limitation of a file path to a restricted directory, potentially leading to arbitrary file deletion without any authentication, which can result in a remote attacker obtaining administrator access […]
LINK Numerous SonicWall firewalls are being targeted. Read the link above immediately if you use SonicWall.
LINK If I read this right, old patches/updates to SonicWall devices for CVE-2019-7481 dont entirely fix the vulnerability on SRA devices. These old SRA devices are no longer supported and will not be fixed, time to make a touch decision on removing it
LINK SonicWall firewalls are affected by a post auth vulnerability – if you have one, looks to updating.
LINK SonicWall zero-day vulnerability has been used by ransomware group. If you have SonicWall, time to investigate for an update.