Primary

Context

SonicWall SonicOS Post-authentication Stack-based Buffer Overflow Vulnerability

Vulnerability

Patched

A post-authentication stack-based buffer overflow vulnerability has been identified in SonicWall SonicOS management. This vulnerability allows remote attackers to crash the firewall and potentially execute arbitrary code. It affects multiple generations of SonicWall firewalls and management services, with the vulnerable versions being 6.5.4.15-117n and older, 7.0.1-5161 and older, 7.1.2-7019 and older, and 8.0.0-8035.

Impact

Exploitation of this vulnerability leads to a stack-based buffer overflow, allowing for a crash of the firewall and potential arbitrary code execution.

Remediation

Users are advised to upgrade to SonicWall SonicOS versions 6.5.5.1-6n and higher, 7.0.1-5165 and higher, 7.1.3-7015 and higher, or 8.0.0-8037 and higher, depending on their current version.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SonicWall SonicOS Post-authentication Stack-based Buffer Overflow Vulnerability

Vulnerability

Impact

Remediation

Affected Products

SonicWall TZ80

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating