The Australian Cyber Security Centre (ACSC) has issued a critical alert regarding a severe access control vulnerability in SonicWall products that is being actively exploited in attacks.
The flaw, tracked as CVE-2024-40766, affects multiple generations of SonicWall firewalls and carries a critical CVSS score of 9.3, highlighting the significant risk it poses to organizations.
The advisory notes a recent increase in exploitation targeting Australian entities, with threat actors like the Akira ransomware group leveraging the vulnerability.
The vulnerability, identified under advisory ID SNWLID-2024-0015, is an improper access control issue within the SonicWall SonicOS management interface and SSLVPN.
This flaw allows an unauthenticated remote attacker to gain unauthorized access to sensitive resources.
According to the vendor’s security advisory, under specific conditions, the exploitation of this vulnerability can also lead to a denial-of-service condition by causing the firewall to crash.
The issue impacts a wide range of devices, including SonicWall’s Gen 5 and Gen 6 firewalls, as well as Gen 7 devices running SonicOS…
