SonicWall GMS Family Security Update Advisory

May 03 2024

Overview

We have released an update to fix vulnerabilities in SonicWall GMS products. users of affected versions are advised to update to the latest version.

Affected Products

SonicWall GMS versions: 9.3.4 or below

Resolved Vulnerabilities

GMS ECM Policy XML External Entity Handling Information Disclosure Vulnerability (CVE-2024-29010)

GMS ECM Hard-Coded Credential Authentication Bypass Vulnerability (CVE-2024-29011)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

SonicWall GMS version: 9.4.0 or at least

Referenced Sites

[1] CVE-2024-29010 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-29010

[2] CVE-2024-29011 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-29011

[3] gms ecm multiple vulnerabilities

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0007

SonicWall GMS Family Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Dell Family May 2024 1st Security Update Advisory

Apple Family April 2024 Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

Dell Family May 2024 1st Security Update Advisory

Apple Family April 2024 Security Update Advisory