CVE-2024-53705

🗓️ 09 Jan 2025 06:58:40Reported by sonicwallType

Server-Side Request Forgery in SonicOS allows remote TCP connection to any IP while logged in.

Reporter	Title	Published	Views	Family All 14
BDU FSTEC	The vulnerability of the SSH configuration function on SonicOS operating systems allows a hacker to perform an SSRF attack.	13 Jan 202500:00	–	bdu_fstec
Circl	CVE-2024-53705	7 Jan 202512:38	–	circl
CNNVD	SonicWALL SonicOS 安全漏洞	9 Jan 202500:00	–	cnnvd
CNVD	Unspecified Vulnerability in SonicWALL SonicOS (CNVD-2025-01660)	13 Jan 202500:00	–	cnvd
CVE	CVE-2024-53705	9 Jan 202506:58	–	cve
EUVD	EUVD-2024-52038	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SonicWall SonicOS	18 Feb 202508:09	–	ncsc
NVD	CVE-2024-53705	9 Jan 202507:15	–	nvd
Positive Technologies	PT-2025-1016 · Sonicwall · Sonicos	7 Jan 202500:00	–	ptsecurity
SonicWall	SonicOS Affected By Multiple Vulnerabilities	7 Jan 202516:56	–	sonicwall

[
  {
    "defaultStatus": "unknown",
    "platforms": [
      "Gen7 Hardware",
      "Gen7 NSv",
      "TZ80",
      "Gen6 Hardware"
    ],
    "product": "SonicOS",
    "vendor": "SonicWall",
    "versions": [
      {
        "status": "affected",
        "version": "6.5.4.15-117n and older versions"
      },
      {
        "status": "affected",
        "version": "7.0.1-5161 and older versions"
      },
      {
        "status": "affected",
        "version": "7.1.1-7058 and older versions"
      },
      {
        "status": "affected",
        "version": "7.1.2-7019"
      },
      {
        "status": "affected",
        "version": "8.0.0-8035"
      }
    ]
  }
]

Source	Link
psirt	www.psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003

09 Jan 2025 06:58Current

EPSS0.00705

CWE-918