SonicWall Gen7 TZ270
Easy fix3 remedies
cpe:2.3:h:sonicwall:tz270:*:*:*:*:*:*:*, +1 more
Easy fix3 remedies
- <= 7.3.0-7012
SonicWall SonicOS Stack-Based Buffer Overflow Vulnerability in SSLVPN Service Leading to Denial-of-Service
Vulnerability
Patched
A stack-based buffer overflow vulnerability has been identified in the SonicOS SSLVPN service. This vulnerability allows remote, unauthenticated attackers to cause a denial-of-service condition, potentially crashing the affected firewall. The issue arises in specific Gen7 and Gen8 hardware firewalls, as well as Gen7 virtual firewalls, when the SonicOS SSLVPN service is enabled.
Impact
Exploitation of this vulnerability leads to a denial-of-service condition, causing the impacted firewall to crash.
Remediation
Administrators are advised to limit SonicOS SSLVPN access to trusted sources by modifying existing access rules. This can help restrict VPN access based on user, service, destination, and source WAN IP addresses. For detailed guidance, refer to SonicWall's knowledgebase articles on restricting VPN access and SSLVPN access based on source WAN IPs.
Added: Nov 20, 2025, 3:34 PM
Updated: Nov 20, 2025, 7:26 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
2.5exploitability
7.0remediation
8.3relevance
1.1threat
0.0urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.