Comment - SonicWall Firewall Vulnerability Exploited After PoC Publication

SonicWall Firewall Vulnerability Exploited After PoC Publication

Created on 2025-02-17 08:57, updated on 2025-02-17 08:57, by Cédric Bonhomme

JSON CVE-2024-53704

vulnerability:exploitability=documented vulnerability:information=PoC

Threat actors started exploiting a recent SonicWall firewall vulnerability this week, shortly after proof-of-concept (PoC) code targeting it was published.

According to Bishop Fox, approximately 4,500 internet-facing SonicWall SSL VPN servers had not been patched against CVE-2024-53704 by February 7.

Related vulnerabilities

CVE-2024-53704

Meta

[
  {
    "tags": [
      "vulnerability:exploitability=documented",
      "vulnerability:information=PoC"
    ]
  },
  {
    "ref": [
      "https://www.securityweek.com/sonicwall-firewall-vulnerability-exploited-after-poc-publication",
      "https://bishopfox.com/blog/sonicwall-cve-2024-53704-ssl-vpn-session-hijacking"
    ]
  }
]