Lucene search
SonicwallCVELIST:CVE-2024-40766HistoryAug 23, 2024 - 6:19 a.m.
CVE-2024-40766
2024-08-2306:19:07
CWE-284
sonicwall
www.cve.org
8
access control
sonicwall
unauthorized access
firewall crash
sonicos
EPSS
0.01
Percentile
84.1%
An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash. This issue affects SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 devices running SonicOS 7.0.1-5035 and older versions.
CNA Affected
[
{
"defaultStatus": "unknown",
"platforms": [
"Gen5",
"Gen6",
"Gen7"
],
"product": "SonicOS",
"vendor": "SonicWall",
"versions": [
{
"status": "affected",
"version": "5.9.2.14-12o and older versions"
},
{
"status": "affected",
"version": "6.5.4.14-109n and older versions"
},
{
"status": "affected",
"version": "7.0.1-5035 and older versions"
}
]
}
]Related
rapid7blog
rapid7blog
nvd
nvd
CVE-2024-40766
2024-08-23 07:15:03
nessus
nessus
SonicWall SonicOS Improper Access Control (SNWLID-2024-0015)
2024-09-09 00:00:00
thn
thn
cisa_kev
cisa_kev
SonicWall SonicOS Improper Access Control Vulnerability
2024-09-09 00:00:00
attackerkb
attackerkb
CVE-2024-40766
2024-08-23 00:00:00
cve
cve
CVE-2024-40766
2024-08-23 07:15:03
vulnrichment
vulnrichment
CVE-2024-40766
2024-08-23 06:19:07