Lucene search
K

8 matches found

The Hacker News
The Hacker News
added 2025/12/17 6:17 p.m.12 views

SonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 Appliances

SonicWall has rolled out fixes to address a security flaw in Secure Mobile Access SMA 100 series appliances that it said has been actively exploited in the wild. The vulnerability, tracked as CVE-2025-40602 CVSS score: 6.6, concerns a case of local privilege escalation that arises as a result of...

9.8CVSS8.6AI score0.23432EPSS
Exploits1
HackRead
HackRead
added 2025/01/27 11:11 a.m.26 views

SonicWall SMA Appliances Exploited in Zero-Day Attacks

Critical security flaw in SonicWall SMA 1000 appliances CVE-2025-23006 exploited as a zero-day. Rated CVSS 9.8, patch immediately…...

9.8CVSS7.1AI score0.23432EPSS
Exploits1
CISA
CISA
added 2025/01/24 12:0 p.m.18 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-23006link is external SonicWall SMA1000 Appliances Deserialization Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber...

9.8CVSS9.8AI score0.23432EPSS
In wildExploits1References6
NVD
NVD
added 2025/01/23 12:15 p.m.25 views

CVE-2025-23006

Pre-authentication deserialization of untrusted data vulnerability has been identified in the SMA1000 Appliance Management Console AMC and Central Management Console CMC, which in specific conditions could potentially enable a remote unauthenticated attacker to execute arbitrary OS commands...

9.8CVSS0.23432EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/01/23 11:37 a.m.34 views

CVE-2025-23006

Pre-authentication deserialization of untrusted data vulnerability has been identified in the SMA1000 Appliance Management Console AMC and Central Management Console CMC, which in specific conditions could potentially enable a remote unauthenticated attacker to execute arbitrary OS commands...

7.8AI score0.23432EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/23 11:37 a.m.63 views

CVE-2025-23006

Pre-authentication deserialization of untrusted data vulnerability has been identified in the SMA1000 Appliance Management Console AMC and Central Management Console CMC, which in specific conditions could potentially enable a remote unauthenticated attacker to execute arbitrary OS commands...

0.23432EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2025/01/23 10:24 a.m.26 views

SonicWall Urges Immediate Patch for Critical CVE-2025-23006 Flaw Amid Likely Exploitation

SonicWall is alerting customers of a critical security flaw impacting its Secure Mobile Access SMA 1000 Series appliances that it said has been likely exploited in the wild as a zero-day. The vulnerability, tracked as CVE-2025-23006 , is rated 9.8 out of a maximum of 10.0 on the CVSS scoring...

9.8CVSS9.8AI score0.23432EPSS
Exploits1
Circl
Circl
added 2025/01/23 9:24 a.m.9 views

CVE-2025-23006

creationtimestamp| type| source ---|---|--- 2025-01-23 09:24:00+00:00| seen| https://thehackernews.com/2025/01/sonicwall-urges-immediate-patch-for.html 2025-01-23 09:32:14+00:00| seen| https://infosec.exchange/users/zeljkazorz/statuses/113876974535447292 2025-01-23 09:53:45+00:00| seen|...

9.8CVSS7.1AI score0.23432EPSS
Exploits1References70
Rows per page
Query Builder