Security Advisory

SonicWall Family Security Update Advisory (CVE-2024-40764)

  • Jul 26 2024

Overview

SonicWall has released updates to fix vulnerabilities in their products. Users of affected versions are advised to update to the latest version.

Affected Products

 

CVE-2024-40764

  • Gen6 NSv10, NSv25, NSv50, NSv100, NSv200, NSv300, NSv400, NSv800, NSv1600 versions: 6.5.4.4-44v-21-2395 or below
  • Gen7 TZ270, TZ270W, TZ370, TZ370W, TZ470, TZ470W, TZ570, TZ570W, TZ570P, TZ670, NSa 2700, NSa 3700,NSa 4700, NSa 5700, NSa 6700, NSsp 10700, NSsp 11700, NSsp 13700, NSsp 15700, NSv 270, NSv 470, NSv 870 versions: 7.0.1-5151 or below
  • Gen7 TZ270, TZ270W, TZ370, TZ370W, TZ470, TZ470W, TZ570, TZ570W, TZ570P, TZ670, NSa 2700, NSa 3700,NSa 4700, NSa 5700, NSa 6700, NSsp 10700, NSsp 11700, NSsp 13700, NSsp 15700, NSv 270, NSv 470, NSv 870 versions: 7.1.1-7051 or below

 

 

Resolved Vulnerabilities

Heap-based buffer overflow vulnerability in SonicOS IPSec VPN, which could allow an unauthenticated, remote attacker to cause a denial of service (DoS)(CVE-2024-40764)

 

 

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2024-40764

  • Gen6 NSv10, NSv25, NSv50, NSv100, NSv200, NSv300, NSv400, NSv800, NSv1600 version: 6.5.4.v-21s-RC2457
  • Gen7 TZ270, TZ270W, TZ370, TZ370W, TZ470, TZ470W, TZ570, TZ570W, TZ570P, TZ670, NSa 2700, NSa 3700,NSa 4700, NSa 5700, NSa 6700, NSsp 10700, NSsp 11700, NSsp 13700, NSsp 15700, NSv 270, NSv 470, NSv 870 version: 7.0.1-5161
  • Gen7 TZ270, TZ270W, TZ370, TZ370W, TZ470, TZ470W, TZ570, TZ570W, TZ570P, TZ670, NSa 2700, NSa 3700,NSa 4700, NSa 5700, NSa 6700, NSsp 10700, NSsp 11700, NSsp 13700, NSsp 15700, NSv 270, NSv 470, NSv 870 version: 7.1.1-7058
  • Gen7 TZ270, TZ270W, TZ370, TZ370W, TZ470, TZ470W, TZ570, TZ570W, TZ570P, TZ670, NSa 2700, NSa 3700,NSa 4700, NSa 5700, NSa 6700, NSsp 10700, NSsp 11700, NSsp 13700, NSsp 15700, NSv 270, NSv 470, NSv 870 version: 7.1.2-7019

 

 

Referenced Sites

[1] CVE-2024-40764 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-40764

[2] Security Advisory – Vulnerability List

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0012

Tags:

Previous Post

Next Post