SonicWall SonicOS SSLVPN Cryptographically Weak PRNG Vulnerability Allowing Authentication Bypass

A vulnerability exists in the SonicOS SSLVPN authentication token generator due to the use of a cryptographically weak pseudo-random number generator (PRNG). In certain cases, this weakness allows an attacker to predict the generated tokens, potentially leading to authentication bypass. This issue affects multiple versions of SonicWall SonicOS on both Gen6 and Gen7 firewalls, as well as the Gen7 Cloud platform NSv (AWS and Azure editions only)

Impact

Exploitation of this vulnerability can lead to authentication bypass, allowing unauthorized access to users or systems

Remediation

Users are advised to update to the latest patched versions of SonicWall SonicOS. The latest patch builds are available for download on mysonicwall.com. If an immediate update is not possible, disable SSLVPN access from the Internet. For more information on how to disable SSLVPN access, consult the SonicWall knowledge base.